Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2001-0925 - Vulnerability Database
Apache HTTP Server

Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2001-0925

Medium
Reference: CVE-2001-0925
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2001-0925
Title: Apache HTTP Server Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters which causes the path to be mishandled by (1) mod_negotiation (2) mod_dir or (3) mod_autoindex.