Eserv Web Server /? Request Forced Directory Listing
Medium Nessus Plugin ID 11656
SynopsisThe web server running on the remote host has an information disclosure vulnerability.
DescriptionThe version of EServ running on the remote host is vulnerable to an information disclosure attack. Sending a specially crafted GET request returns a directory listing, even when an index file is present.
A remote attacker could use this information to mount further attacks against the system.
SolutionUpgrade to the latest version of EServ.