CVE-2002-1156Apache Http Server vulnerability

5 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
26.4%
top 3.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedOct 11
Latest updateApr 30

Description

Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapache/http_server2.0.42

🔴Vulnerability Details

3
GHSA
GHSA-3qpv-3xc9-766w: Apache 22022-04-30
CVEList
CVE-2002-1156: Apache 22004-09-01
OSV
CVE-2002-1156: Apache 22002-10-11

📋Vendor Advisories

1
Debian
CVE-2002-1156: apache2 - Apache 2.0.42 allows remote attackers to view the source code of a CGI script vi...2002
CVE-2002-1156 — Apache Http Server vulnerability | cvebase