Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1449

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1449
Last Modified 10 Sep 2008 03:10:31
Published 28 Nov 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1449

Summary

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

Vulnerable Systems

Operating System

  • Mandrakesoft Mandrake Linux 7.1

  • Mandrakesoft Mandrake Linux 7.3

  • Mandrakesoft Mandrake Linux 8.0

  • Mandrakesoft Mandrake Linux Corporate Server 1.0.1

Application

  • Apache Http Server 1.3

  • Apache Http Server 1.3.1

  • Apache Http Server 1.3.11

  • Apache Http Server 1.3.12

  • Apache Http Server 1.3.14

  • Apache Http Server 1.3.17

  • Apache Http Server 1.3.18

  • Apache Http Server 1.3.3

  • Apache Http Server 1.3.4

  • Apache Http Server 1.3.6

  • Apache Http Server 1.3.9

  • Mandrakesoft Mandrake Single Network Firewall 7.2


References

CERT-VN - VU#913704

XF - mandrake-apache-browse-directories(8029)

MANDRAKE - MDKSA-2001:077


Last Updated: 27 May 2016 10:36:40