Apache Insecurity Reveals Directory Contents
In some circumstances, the Apache web server may display a directory listing when it should display an error message. It has been reported that all versions of Apache prior to 1.3.19 are affected.
The Apache Software Foundation and the Apache Server Project have released version 1.3.19 of the Apache web server. It is strongly recommended that all users of older versions upgrade to 1.3.19. No further releases are planned for the Apache 1.2.x series.