Description
The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote attackers to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.
Remediation
References
Related Vulnerabilities
Joomla! Core Security Bypass (2.5.0 - 3.8.7)
WordPress Plugin WP eCommerce Multiple Vulnerabilities (3.8.9.5)
Joomla! Core Multiple Vulnerabilities (1.7.3 - 3.7.2)
Oracle Database Server CVE-2013-1538 Vulnerability (CVE-2013-1538)
Squid Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-4553)