Description

Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.

Remediation

References

CVE-2001-0766

Related Vulnerabilities

WordPress Plugin Easiest Contact Form for WordPress-AP Contact Form includes Backdoor [Only if downloaded via the vendor website] (1.0.6)

Internet Information Services Other Vulnerability (CVE-2002-0149)

WordPress Plugin Catch Import Export Security Bypass (1.8)

MediaWiki Improper Privilege Management Vulnerability (CVE-2020-10534)

WordPress Plugin Seo Spy Arbitrary File Upload (2.6)

Severity

Critical

Classification

CVE-2001-0766 CWE-178 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities