Apache 1.3.*-2.0.48 mod_userdir Remote Users Disclosure Exploit

No description provided by source. / m00-apache-w00t.c Apache 1.3.-2.0.48 remote users disclosure exploit by m00 Security. Proof-of-Concept edition This tool scans remote hosts with httpd apache and disclosure information...

GLSA-200804-08 : lighttpd: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200804-08 lighttpd: Multiple vulnerabilities Julien Cayzax discovered that an insecure default setting exists in moduserdir in lighttpd. When userdir.path is not set the default value used is $HOME. It should be noted that the...

openSUSE 10 Security Update : lighttpd (lighttpd-5107)

Remote attackers were able to crash lighttpd by opening a large number of connections CVE-2008-0983. - A bug in modcgi allowed remote attackers to read cgi source files CVE-2008-1111. - A bug in moduserdir allowed remote attackers to read arbitrary files CVE-2008-1270. %NASLMINLEVEL 70300 C...

Lighttpd 1.4.x - mod_userdir Information Disclosure

Lighttpd 1.4.x - moduserdir Information Disclosure source: https://www.securityfocus.com/bid/28226/info The 'lighttpd' program is prone to a vulnerability that may allow attackers to access sensitive information because the application fails to properly handle exceptional conditions. Information...

Lighttpd 1.4.x - mod_userdir Information Disclosure

source: https://www.securityfocus.com/bid/28226/info The 'lighttpd' program is prone to a vulnerability that may allow attackers to access sensitive information because the application fails to properly handle exceptional conditions. Information obtained may aid in further attacks. This issue...

Directory traversal

moduserdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME, which might allow remote attackers to read arbitrary files, as demonstrated by accessing the nobody directory...

CVE-2008-1270

moduserdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME, which might allow remote attackers to read arbitrary files, as demonstrated by accessing the nobody directory...

DEBIAN-CVE-2008-1270

moduserdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME, which might allow remote attackers to read arbitrary files, as demonstrated by accessing the nobody directory...

CVE-2008-1270

lighttpd

Apache 1.3.*-2.0.48 mod_userdir Remote Users Disclosure Exploit

Exploit for linux platform in category remote exploits =============================================================== Apache 1.3.-2.0.48 moduserdir Remote Users Disclosure Exploit =============================================================== / m00-apache-w00t.c Apache 1.3.-2.0.48 remote users...

Apache 1.3.x < 2.0.48 mod_userdir - Remote Users Disclosure

/ m00-apache-w00t.c Apache 1.3.-2.0.48 remote users disclosure exploit by m00 Security. Proof-of-Concept edition This tool scans remote hosts with httpd apache and disclosure information about existens users accounts via wrong default configuration of moduserdir default apache module. Then attemp...

Apache 1.3.x 2.0.48 mod_userdir - Remote Users Disclosure

Apache 1.3.x 2.0.48 moduserdir - Remote Users Disclosure / m00-apache-w00t.c Apache 1.3.-2.0.48 remote users disclosure exploit by m00 Security. Proof-of-Concept edition This tool scans remote hosts with httpd apache and disclosure information about existens users accounts via wrong default...