Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Apache 2.0 before 2.0.44 on Windows platforms allows remote attackers to obtain certain files via an HTTP request that ends in certain illegal characters such as ">", which causes a different filename to be processed and served.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache Web Server 安全漏洞
Vulnerability Description
Apache Web Server是一款开放源代码的HTTP服务程序。Microsoft Windows版本下的Apache WEB服务程序对部分HTTP请求处理不正确,远程攻击者可以利用这个漏洞获得服务器部分文件内容。Windows平台下的Apache对在HTTP请求最后追加非法字符(如"<")缺少正确的处理,攻击者可以请求包含非法字符的文件,而使服务程序返回请求文件的实际内容,造成信息泄露。利用这个漏洞可以帮助攻击者进一步对系统进行攻击。
CVSS Information
N/A
Vulnerability Type
N/A