CVE-2000-0951

Description

A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search.

Affected products

• Microsoft / internet_information_services5.0 – 5.0

References

• MISChttp://www.securityfocus.com/bid/1756
• MISChttp://www.microsoft.com/technet/support/kb.asp?ID=272079
• VENDOR_ADVISORYhttp://www.atstake.com/research/advisories/2000/a100400-1.txt
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5335