SilverStream Directory Listing

This script is Copyright (C) 2002-2013 Tor Houghton


Synopsis :

The remote application server is affected by an information disclosure
vulnerability.

Description :

The SilverStream application server running on the remote host
currenly has directory listings enabled. An unauthenticated, remote
attacker may use this issue to gain more knowledge about the service
and possibly to retrieve sensitive files.

See also :

http://archives.neohapsis.com/archives/sf/pentest/2000-11/0147.html

Solution :

Reconfigure the server to disable directory listings.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: Web Servers

Nessus Plugin ID: 10846 ()

Bugtraq ID:

CVE ID:

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial