Apache 2.0 Path Disclosure Vulnerability

2002-08-16T00:00:00
ID EDB-ID:21719
Type exploitdb
Reporter Auriemma Luigi
Modified 2002-08-16T00:00:00

Description

Apache 2.0 Path Disclosure Vulnerability. CVE-2002-0654. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/5485/info

A path disclosure vulnerability has been reported in Apache 2.0.x.

It is possible to reproduce this condition on vulnerable systems by making a request for certain types of files (such as error documents) that have been mapped by the server by type but fail to be served due to failure of MIME negotiation.

http://target/error/HTTP_NOT_FOUND.html.var