First published: Mon Aug 02 2010(Updated: )
bozotic HTTP server (aka bozohttpd) before 20100621 allows remote attackers to list the contents of home directories, and determine the existence of user accounts, via multiple requests for URIs beginning with /~ sequences.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Eterna Bozohttpd | =20090417 | |
Eterna Bozohttpd | =20080303 | |
Eterna Bozohttpd | =20030313 | |
Eterna Bozohttpd | =20000421 | |
Eterna Bozohttpd | =20000825 | |
Eterna Bozohttpd | =20100512 | |
Eterna Bozohttpd | =20021106 | |
Eterna Bozohttpd | =20060710 | |
Eterna Bozohttpd | =20020803 | |
Eterna Bozohttpd | =20020804 | |
Eterna Bozohttpd | =20050410 | |
Eterna Bozohttpd | =20090522 | |
Eterna Bozohttpd | =20040808 | |
Eterna Bozohttpd | =20020730 | |
Eterna Bozohttpd | =20030626 | |
Eterna Bozohttpd | =20030409 | |
Eterna Bozohttpd | =20100509 | |
Eterna Bozohttpd | =20010922 | |
Eterna Bozohttpd | =20020710 | |
Eterna Bozohttpd | =20000426 | |
Eterna Bozohttpd | =20031005 | |
Eterna Bozohttpd | =20040218 | |
Eterna Bozohttpd | =20000427 | |
Eterna Bozohttpd | =20060517 | |
Eterna Bozohttpd | =20010812 | |
Eterna Bozohttpd | =20020913 | |
Eterna Bozohttpd | <=20100617 | |
Eterna Bozohttpd | =19990519 | |
Eterna Bozohttpd | =20010610 | |
Eterna Bozohttpd | =20020823 | |
Eterna Bozohttpd | =20000815 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.