PT-2002-1151 · Microsoft +1 · Cmd.Exe +2

Name of the Vulnerable Software and Affected Versions: Apache for Win32 versions 1.3.24 and earlier Apache for Win32 versions 2.0.x through 2.0.34-beta Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters, such as a | pipe character, provided as...

Apache for Windows Multiple Forward Slash Directory Listing

Certain versions of Apache for Win32 have a bug wherein remote users can list directory entries. Specifically, by appending multiple /'s to the HTTP GET command, the remote Apache server will list all files and subdirectories within the web root as defined in httpd.conf. %NASLMINLEVEL 70300 This...