GEN:SID 1:1519
Message WEB-MISC apache ?M=D directory list attempt
Summary This event is generated when an attempt is made to exploit a flaw in
Apache that can result in a listing of directory contents.
Impact Information disclosure.
Detailed Information When "Multiviews" are used to negotiate a directory index, a specially
crafted URL can be used to obtain a directory listing instead of the
index page.
Affected Systems Apache 1.3.11, 1.3.14 to 1.3.20
Attack Scenarios An attacker can use this exploit to view sensitive information
Ease of Attack Simple.
Corrective Action Upgrade to the latest non-affected version of the software.
Additional References Bugtraq:
http://www.securityfocus.com/bid/3009

CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0731
Rule References bugtraq: 3009
cve: 2001-0731