Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0868

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0868
Last Modified 05 Sep 2008 04:22:04
Published 14 Nov 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0868

Summary

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.

Vulnerable Systems

Operating System

  • Suse Linux 6.3

  • Suse Linux 6.4

Application

  • Apache Http Server 1.3.12


References

BID - 1658

ATSTAKE - A090700-2

SUSE - 20000907

XF - suse-apache-cgi-source-code


Last Updated: 27 May 2016 10:35:54