This script is Copyright (C) 1999-2011 Tenable Network Security, Inc.
The remote web server is affected by an information disclosure
It was possible to obtain the physical location of a virtual web
directory of this host by issuing a request for a non-existent file
with an IISAPI-registered extension.
An attacker may use this flaw to gain more information about the remote
host, and hence make more focused attacks.
Configure the web server to check for the existence of a file before
it returns an error message.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7