Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2) mod_dir, or (3) mod_autoindex.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache 安全漏洞
Vulnerability Description
Apache是一款广泛使用的开放源代码WEB服务程序。Apache的实现上存在目录信息泄漏漏洞,远程攻击者可能利用此漏洞获取目录列表。在默认的配置中Apache允许mod_dir,mod_autoindex和mod_negotiation。攻击者可以向Apache server提供由多个斜线("/")组成的特制请求,导致上述这些模块异常,这样就可能转义错误页面,获得目录内容的列表。
CVSS Information
N/A
Vulnerability Type
N/A