Description

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.

Remediation

References

CVE-2000-0868

Related Vulnerabilities

Moodle Other Vulnerability (CVE-2006-4938)

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3743)

MySQL Other Vulnerability (CVE-2006-1517)

Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-13363)

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2269)

Severity

Medium

Classification

CVE-2000-0868

Tags

Missing Update Known Vulnerabilities