What is the severity of CVE-2001-1449?

The severity of CVE-2001-1449 is classified as medium, given that it allows remote attackers to list directory contents.

How do I fix CVE-2001-1449?

To fix CVE-2001-1449, update Apache HTTP Server to version 1.3.19 or later or configure appropriate directory settings to prevent directory listing.

What systems are affected by CVE-2001-1449?

CVE-2001-1449 affects Apache HTTP Server versions 1.3.1 through 1.3.18 and specific versions of Mandrake Linux.

Can CVE-2001-1449 be exploited remotely?

Yes, CVE-2001-1449 can be exploited remotely by attackers to gain access to web directory listings without proper authorization.

Is CVE-2001-1449 still a concern today?

While CVE-2001-1449 primarily impacts older systems, organizations running unsupported versions of Apache should consider it a security concern.

Vulnerability/
CVE-2001-1449

high

7.5

CWE

NVD-CWE-Other

28/11/2001

21/4/2005

8/8/2024

CVE-2001-1449

First published: Wed Nov 28 2001(Updated: )

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apache Http Server	=1.3
Apache Http Server	=1.3.1
Apache Http Server	=1.3.3
Apache Http Server	=1.3.4
Apache Http Server	=1.3.6
Apache Http Server	=1.3.9
Apache Http Server	=1.3.11
Apache Http Server	=1.3.12
Apache Http Server	=1.3.14
Apache Http Server	=1.3.17
Apache Http Server	=1.3.18
Mandrakesoft Mandrake Single Network Firewall	=7.2
Mandrake Linux	=7.1
Mandrake Linux	=7.3
Mandrake Linux	=8.0
Mandriva Linux Corporate Server	=1.0.1

Remedy

http://www.kb.cert.org/vuls/id/913704

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2001-1449?
The severity of CVE-2001-1449 is classified as medium, given that it allows remote attackers to list directory contents.
How do I fix CVE-2001-1449?
To fix CVE-2001-1449, update Apache HTTP Server to version 1.3.19 or later or configure appropriate directory settings to prevent directory listing.
What systems are affected by CVE-2001-1449?
CVE-2001-1449 affects Apache HTTP Server versions 1.3.1 through 1.3.18 and specific versions of Mandrake Linux.
Can CVE-2001-1449 be exploited remotely?
Yes, CVE-2001-1449 can be exploited remotely by attackers to gain access to web directory listings without proper authorization.
Is CVE-2001-1449 still a concern today?
While CVE-2001-1449 primarily impacts older systems, organizations running unsupported versions of Apache should consider it a security concern.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/remedy
agent/weakness
agent/author
agent/references
agent/severity
agent/last-modified-date
agent/description
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apache
canonical/apache http server
version/apache http server/1.3.1
version/apache http server/1.3.6
version/apache http server/1.3.4
version/apache http server/1.3.18
vendor/mandrakesoft
canonical/mandrakesoft mandrake single network firewall
version/mandrakesoft mandrake single network firewall/7.2
version/apache http server/1.3
version/apache http server/1.3.12
version/apache http server/1.3.3
version/apache http server/1.3.17
version/apache http server/1.3.9
version/apache http server/1.3.14
version/apache http server/1.3.11
canonical/mandriva linux corporate server
version/mandriva linux corporate server/1.0.1
canonical/mandrake linux
version/mandrake linux/7.1
version/mandrake linux/7.3
version/mandrake linux/8.0