Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1013


Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1013
Last Modified 05 Sep 2008 04:25:28
Published 12 Sep 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server.

Vulnerable Systems

Operating System

  • Redhat Linux 7.0


BID - 3335

XF - linux-apache-username-exists(7129)

BUGTRAQ - 20010912 Is there user Anna at your host ?

VULN-DEV - 20000707 Re: your mail

VULN-DEV - 20000707 Re: apache and 404/404 status codes

VULN-DEV - 20000707 (no subject)

Last Updated: 27 May 2016 10:36:29