CVE-2001-1449

Опубликовано: 28 нояб. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

Ссылки

http://www.kb.cert.org/vuls/id/913704
Patch
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2001:077-2
https://exchange.xforce.ibmcloud.com/vulnerabilities/8029
http://www.kb.cert.org/vuls/id/913704
Patch
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2001:077-2
https://exchange.xforce.ibmcloud.com/vulnerabilities/8029

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:*

cpe:2.3:a:mandrakesoft:mandrake_single_network_firewall:7.2:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:mandrakesoft:mandrake_linux:7.1:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:7.3:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:1.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05425

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2001-1449

debian

больше 23 лет назад

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 ...

GHSA-xvj7-rgf2-85f2

github

около 3 лет назад