- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19253
- Проверка EDB
-
- Пройдено
- Автор
- ANONYMOUS
- Тип уязвимости
- REMOTE
- Платформа
- LINUX
- CVE
- cve-1999-0678
- Дата публикации
- 1999-06-17
Debian 2.1 - HTTPd
Код:
source: https://www.securityfocus.com/bid/318/info
The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line:
Alias /doc/ /usr/doc/
Boa is also preconfigured this way.
lynx http://some.host/doc
This will provide you with all of the information in /usr/doc, which could be used to find vulnerable software on the remote machine.- Источник
- www.exploit-db.com
