Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0869

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0869
Last Modified 05 Sep 2008 04:22:04
Published 14 Nov 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0869

Summary

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary diretories via the PROPFIND HTTP request method.

Vulnerable Systems

Operating System

  • Suse Linux 6.0

  • Suse Linux 6.1

  • Suse Linux 6.2

  • Suse Linux 6.3

  • Suse Linux 6.4

  • Suse Linux 7.0

Application

  • Apache Http Server 1.3.12


References

BID - 1656

ATSTAKE - A090700-3

SUSE - 20000907

XF - apache-webdav-directory-listings


Last Updated: 27 May 2016 10:35:54