CVE-2000-1016
published 2000-12-11CVE-2000-1016: The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package…
PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
7.57%
93.8th percentile
The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packages URL.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Internet Explorer - isComponentInstalled Overflow (Metasploit)
exploitdb·2010-05-09
CVE-2006-1016 Microsoft Internet Explorer - isComponentInstalled Overflow (Metasploit)
Microsoft Internet Explorer - isComponentInstalled Overflow (Metasploit)
---
##
# $Id: ie_iscomponentinstalled.rb 9262 2010-05-09 17:45:00Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Internet Explorer isComponentInstalled Overflow',
'Description' => %q{
This module exploits a stack buffer overflow in Internet Explorer. This bug was
patched in Windows 2000 SP4 and Windows XP SP1 according to MSRC.
},
'License' => MSF_LICENSE,
'Author' =>
[
'hdm',
],
'Version' => '$Revision: 9262 $',
'References' =>
[
[ 'CVE', '2006-1016' ],
[ 'O
Exploit-DB
SuSE Linux 6.3/6.4 - Installed Package Disclosure
exploitdb·2000-09-21
CVE-2000-1016 SuSE Linux 6.3/6.4 - Installed Package Disclosure
SuSE Linux 6.3/6.4 - Installed Package Disclosure
---
source: https://www.securityfocus.com/bid/1707/info
By submitting a specific url to the web server ("http://hosts.any/doc/packages/") , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configuration in the Apache httpd.conf supplied with S.u.S.E that permits anyone to request documents from this webroot subdirectory. The end result is that attackers will know what packages the victim has installed, which can assist in executing more complicated attacks.
Request "http://target/doc/packages/" with a web browser.
No writeups or analysis indexed.
2000-12-11
Published