<div>
what is exact message?<br />
what tool are you using to get that message?
</div>


what is exact message?
what tool are you using to get that message?

<div>
Thx! &nbsp;We have a lot of include files. Will take some time to fix.
</div>


Thx!  We have a lot of include files. Will take some time to fix.

<div>
<div class="content wysiwyg-content">
I have a Windows 2012R2 server. I ran a PCI scan and the only vulnerability I found was &quot;&nbsp;The Web server can be triggered to reveal the absolute path for the Web root directory and/or other software installed on the host&quot; <br />
<br />
The application we host requires parent paths to be enabled in IIS. I am not sure if this is causing the issue and if it is then what needs to be done with the application in order to be able to disable parent paths. <br />
<br />
How can I resolve this issue?
</div>
</div>


I have a Windows 2012R2 server. I ran a PCI scan and the only vulnerability I found was " The Web server can be triggered to reveal the absolute path for the Web root directory and/or other software installed on the host" 

The application we host requires parent paths to be enabled in IIS. I am not sure if this is causing the issue and if it is then what needs to be done with the application in order to be able to disable parent paths. 

How can I resolve this issue?

Web server reveals absolute path

Web development includes all aspects of presenting content on intranets and the Internet, including delivery development, protocols, languages and standards, server software, browser clients, databases and multimedia generation.

Web Development

Active Server Pages (ASP) is Microsoft’s first server-side engine for dynamic web pages. ASP’s support of the Component Object Model (COM) enables it to access and use compiled libraries such as DLLs. It has been superseded by ASP.NET, but will be supported by Internet Information Services (IIS) through at least 2022.

iis8

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.