What is the severity of CVE-2000-1204?

CVE-2000-1204 is considered a high severity vulnerability due to its potential for exposing sensitive CGI source code to remote attackers.

How do I fix CVE-2000-1204?

To fix CVE-2000-1204, upgrade Apache HTTP Server to a version later than 1.3.12 that does not include this vulnerability.

Which versions of Apache are affected by CVE-2000-1204?

CVE-2000-1204 affects Apache HTTP Server versions 1.3.9, 1.3.11, and 1.3.12.

What type of attack is possible through CVE-2000-1204?

CVE-2000-1204 allows remote attackers to execute a source code disclosure attack, potentially revealing sensitive information.

Is there a workaround for CVE-2000-1204 if I cannot upgrade?

A workaround for CVE-2000-1204 is to ensure that the cgi-bin directory is not located within the document root to prevent exposure.

Vulnerability/
CVE-2000-1204

medium

CWE

NVD-CWE-Other

13/10/2000

7/11/2023

CVE-2000-1204

First published: Fri Oct 13 2000(Updated: )

Vulnerability in the mod_vhost_alias virtual hosting module for Apache 1.3.9, 1.3.11 and 1.3.12 allows remote attackers to obtain the source code for CGI programs if the cgi-bin directory is under the document root.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Apache HTTP Server	=1.3.12
Apache HTTP Server	=1.3.9
Apache HTTP Server	=1.3.11

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2000-1204?
CVE-2000-1204 is considered a high severity vulnerability due to its potential for exposing sensitive CGI source code to remote attackers.
How do I fix CVE-2000-1204?
To fix CVE-2000-1204, upgrade Apache HTTP Server to a version later than 1.3.12 that does not include this vulnerability.
Which versions of Apache are affected by CVE-2000-1204?
CVE-2000-1204 affects Apache HTTP Server versions 1.3.9, 1.3.11, and 1.3.12.
What type of attack is possible through CVE-2000-1204?
CVE-2000-1204 allows remote attackers to execute a source code disclosure attack, potentially revealing sensitive information.
Is there a workaround for CVE-2000-1204 if I cannot upgrade?
A workaround for CVE-2000-1204 is to ensure that the cgi-bin directory is not located within the document root to prevent exposure.

agent/weakness
agent/severity
agent/author
agent/type
agent/event
agent/first-publish-date
agent/last-modified-date
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-api
collector/nvd-index
agent/references
agent/description
agent/softwarecombine
vendor/apache
canonical/apache http server
version/apache http server/1.3.12
version/apache http server/1.3.9
version/apache http server/1.3.11

Frequently Asked Questions

What is the severity of CVE-2000-1204?
CVE-2000-1204 is considered a high severity vulnerability due to its potential for exposing sensitive CGI source code to remote attackers.
How do I fix CVE-2000-1204?
To fix CVE-2000-1204, upgrade Apache HTTP Server to a version later than 1.3.12 that does not include this vulnerability.
Which versions of Apache are affected by CVE-2000-1204?
CVE-2000-1204 affects Apache HTTP Server versions 1.3.9, 1.3.11, and 1.3.12.
What type of attack is possible through CVE-2000-1204?
CVE-2000-1204 allows remote attackers to execute a source code disclosure attack, potentially revealing sensitive information.
Is there a workaround for CVE-2000-1204 if I cannot upgrade?
A workaround for CVE-2000-1204 is to ensure that the cgi-bin directory is not located within the document root to prevent exposure.

CVE-2000-1204

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2000-1204?

How do I fix CVE-2000-1204?

Which versions of Apache are affected by CVE-2000-1204?

What type of attack is possible through CVE-2000-1204?

Is there a workaround for CVE-2000-1204 if I cannot upgrade?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2000-1204?

How do I fix CVE-2000-1204?

Which versions of Apache are affected by CVE-2000-1204?

What type of attack is possible through CVE-2000-1204?

Is there a workaround for CVE-2000-1204 if I cannot upgrade?