Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2000-1191

Опубликовано: 31 авг. 2001
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:htdig_project:htdig:*:*:*:*:*:*:*:*
Версия до 3.1.6 (включая)
cpe:2.3:a:htdig_project:htdig:3.2.0:beta1:*:*:*:*:*:*

EPSS

Процентиль: 83%
0.01998
Низкий

5 Medium

CVSS2

Дефекты

CWE-209

Связанные уязвимости

redhat
около 25 лет назад

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.

github
около 3 лет назад

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.

EPSS

Процентиль: 83%
0.01998
Низкий

5 Medium

CVSS2

Дефекты

CWE-209