| VID |
22028 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The /cgi-bin directory is browsable. This gives an attacker valuable information about which default scripts you have installed and also whether there are any custom scripts present which may have vulnerabilities. thus may be exploitable.
* References:
http://cgi.nessus.org/plugins/dump.php3?id=10039 |
| Recommendation |
Make the /cgi-bin non-browsable. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
