Description

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.

Remediation

References

CVE-2000-0868

Related Vulnerabilities

MySQL Other Vulnerability (CVE-2007-2692)

WordPress Plugin WP Featured Post with thumbnail 'src' Parameter Cross-Site Scripting (3.0)

WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.15)

Django Improper Input Validation Vulnerability (CVE-2015-5144)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-40191)

Severity

Medium

Classification

CVE-2000-0868

Tags

Missing Update Known Vulnerabilities