How to Buy
This script is Copyright (C) 2001-2012 Matt Moore
The remote web server is affected by an information disclosure
By making a request to the Apache web server ending in '?M=A' it is
sometimes possible to obtain a directory listing even if an
index.html file is present.
It appears that it is possible to retrieve a directory listing from
the root of the Apache web server being tested. However, this could
be because there is no 'index.html' or similar default file present.
Unless it is required, turn off Indexing by making the appropriate
changes to your httpd.conf file.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 10704 (apache_dir_listing.nasl)
Bugtraq ID: 3009
CVE ID: CVE-2001-0731
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.