Apache HTTP Server mod_vhost_alias CGI Program Source Disclosure

2000-10-13T00:00:00
ID OSVDB:9690
Type osvdb
Reporter OSVDB
Modified 2000-10-13T00:00:00

Description

Technical Description

The mod_vhost_alias module is an extension and is not compiled by default.

Solution Description

Upgrade to version 1.3.14 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://httpd.apache.org/ Vendor Specific Advisory URL ISS X-Force ID: 11088 CVE-2000-1204