Lucene search

MitreCVE-2000-0869

HistoryJan 22, 2001 - 5:00 a.m.

CVE-2000-0869

2001-01-2205:00:00

mitre

web.nvd.nist.gov

cve-2000-0869

apache

suse linux

webdav

remote attacker

propfind

http request

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

High

EPSS

0.015

Percentile

86.8%

JSON

The default configuration of Apache 1.3.12 in SuSE Linux 6.4 enables WebDAV, which allows remote attackers to list arbitrary directories via the PROPFIND HTTP request method.

Affected configurations

Nvd

Node

apachehttp_serverMatch1.3.12

Node

susesuse_linuxMatch6.0

susesuse_linuxMatch6.1

susesuse_linuxMatch6.1alpha

susesuse_linuxMatch6.2

susesuse_linuxMatch6.3

susesuse_linuxMatch6.3ppc

susesuse_linuxMatch6.3alpha

susesuse_linuxMatch6.4

susesuse_linuxMatch6.4ppc

susesuse_linuxMatch6.4alpha

susesuse_linuxMatch7.0

VendorProductVersionCPE
apachehttp_server1.3.12cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*
susesuse_linux6.0cpe:2.3:o:suse:suse_linux:6.0:*:*:*:*:*:*:*
susesuse_linux6.1cpe:2.3:o:suse:suse_linux:6.1:*:*:*:*:*:*:*
susesuse_linux6.1cpe:2.3:o:suse:suse_linux:6.1:alpha:*:*:*:*:*:*
susesuse_linux6.2cpe:2.3:o:suse:suse_linux:6.2:*:*:*:*:*:*:*
susesuse_linux6.3cpe:2.3:o:suse:suse_linux:6.3:*:*:*:*:*:*:*
susesuse_linux6.3cpe:2.3:o:suse:suse_linux:6.3:*:ppc:*:*:*:*:*
susesuse_linux6.3cpe:2.3:o:suse:suse_linux:6.3:alpha:*:*:*:*:*:*
susesuse_linux6.4cpe:2.3:o:suse:suse_linux:6.4:*:*:*:*:*:*:*
susesuse_linux6.4cpe:2.3:o:suse:suse_linux:6.4:*:ppc:*:*:*:*:*

Vendor	Product	Version	CPE
apache	http_server	1.3.12	cpe:2.3:a:apache:http_server:1.3.12:::::::*
suse	suse_linux	6.0	cpe:2.3:o:suse:suse_linux:6.0:::::::*
suse	suse_linux	6.1	cpe:2.3:o:suse:suse_linux:6.1:::::::*
suse	suse_linux	6.1	cpe:2.3:o:suse:suse_linux:6.1:alpha::::::
suse	suse_linux	6.2	cpe:2.3:o:suse:suse_linux:6.2:::::::*
suse	suse_linux	6.3	cpe:2.3:o:suse:suse_linux:6.3:::::::*
suse	suse_linux	6.3	cpe:2.3:o:suse:suse_linux:6.3::ppc:::::
suse	suse_linux	6.3	cpe:2.3:o:suse:suse_linux:6.3:alpha::::::
suse	suse_linux	6.4	cpe:2.3:o:suse:suse_linux:6.4:::::::*
suse	suse_linux	6.4	cpe:2.3:o:suse:suse_linux:6.4::ppc:::::

Rows per page:

1-10 of 121

References

archives.neohapsis.com/archives/linux/suse/2000-q3/0906.html

www.atstake.com/research/advisories/2000/a090700-3.txt

www.securityfocus.com/bid/1656

exchange.xforce.ibmcloud.com/vulnerabilities/5204

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

High

EPSS

0.015

Percentile

86.8%

JSON

Related for CVE-2000-0869