/vulndb/Dangerous Methods Enabled

Uncommon HTTP methods like PUT, DELETE and all other WEBDAV methods are considered dangerous.

A web server accepting these methods may allow an attacker to gain full control over the application and its environment. The same methods can be also be used to cause Denial of Service (DoS) by destroying the application structure.


If WEBDAV methods are not required by the web application you should disallow the web server from accepting them.


http://en.wikipedia.org/wiki/Hypertext_Transfer_Protocol#Request_methods http://msdn.microsoft.com/en-us/library/aa142917(v=exchg.65).aspx