The default configuration of Apache 1.3.12 in SuSE Linux 6.4 allows remote malicious users to read source code for CGI scripts by replacing the /cgi-bin/ in the requested URL with /cgi-bin-sdb/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server 1.3.12 |
||
suse suse linux 6.4 |
||
suse suse linux 6.3 |