Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote malicious users to determine valid usernames on the server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat linux 7.0 |