Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Caldera OpenLinux rpm_query CGI泄漏系统RPM包安装信息漏洞
Vulnerability Description
OpenLinux是Caldera公司出品的一个Linux发行版本。 对于某些版本的OpenLinux,存在一个默认安装的脚本,可能会导致系统信息泄漏。 Caldera OpenLinux 2.3完全安装后会安装一个名为rpm_query的CGI程序,默认位置在/home/httpd/cgi-bin/。任何人都可以远程连接到Web服务器上,利用这个CGI获取系统所安装的所有rpm包的完整列表。其中包括已经安装的软件及其版本等信息。攻击者可以利用这些信息判断系统是否安装了一些有安全问题的软件,从而进行相应的
CVSS Information
N/A
Vulnerability Type
N/A