SilverStream Directory Listing

This script is Copyright (C) 2002-2013 Tor Houghton


Synopsis :

The remote application server is affected by an information disclosure
vulnerability.

Description :

The SilverStream application server running on the remote host
currenly has directory listings enabled. An unauthenticated, remote
attacker may use this issue to gain more knowledge about the service
and possibly to retrieve sensitive files.

See also :

http://archives.neohapsis.com/archives/sf/pentest/2000-11/0147.html

Solution :

Reconfigure the server to disable directory listings.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Family: Web Servers

Nessus Plugin ID: 10846 ()

Bugtraq ID:

CVE ID: