CVE-2000-0951
A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search.
Date published : 2001-01-22
http://www.atstake.com/research/advisories/2000/a100400-1.txt