NASLDB: SilverStream Directory Listing
General
ID: 10846
Name: SilverStream Directory Listing
Summary: Checks if SilverStream directory listings are disabled.
Credits: –
Classification
Risk: –
CVSS: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS Base Vector: –
CVSS Temporal Vector: –
Port: 80
Family: Web Servers
Type: Remote
Description
The SilverStream application server running on the remote host
currenly has directory listings enabled. An unauthenticated, remote
attacker may use this issue to gain more knowledge about the service
and possibly to retrieve sensitive files.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: –
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2000/11/14
Patch Release: –
Plugin Release: 2002/02/06
Plugin
Version: 1.14
Filename: silverstream_dirlisting.nasl
Filesize: 2942 bytes
MD5 Hash: 9c0e3ce447ba40bcf6ccac8d1594e671
Identification: Services/www/"port"/embedded
Require Keys: –
Dependencies: "http_version.nasl"
Copyright: This script is Copyright© 2002-2011 Tor Houghton
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack