CVE-2001-0731

Name of the Vulnerable Software and Affected Versions: Apache version 1.3.20

Description: A issue exists when Multiviews are used to negotiate the directory index. In some configurations, requesting a URI with a QUERY STRING of M=D could return a directory listing rather than the expected index page, allowing remote attackers to view directory contents and bypass the index page.

Recommendations: For Apache version 1.3.20, consider disabling Multiviews to prevent directory listings from being returned when a URI with a QUERY STRING of M=D is requested.