Microsoft IIS /scripts Directory Browsable

This script is Copyright (C) 1999-2013 Tenable Network Security, Inc.


Synopsis :

The remote web server is affected by an information disclosure
vulnerability.

Description :

The /scripts directory is browsable. This gives an attacker valuable
information about which default scripts you have installed and also
whether there are any custom scripts present that may have
vulnerabilities.

Solution :

Disable directory browsing using the IIS MMC.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: Web Servers

Nessus Plugin ID: 10121 (iis_scripts.nasl)

Bugtraq ID:

CVE ID: