Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

Apache 2.0.39 Win32 directory traversal

Severity

High

Family

Web Servers

CVSSv2 Base

7.5

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Solution Type

Vendor Patch

Created

18 years ago

Modified

5 years ago

Share on Facebook
Share on LinkedIn
Share on Twitter

Apache 2.0.39 Win32 directory traversal

Insight

A security vulnerability in Apache 2.0.39 on Windows systems allows attackers to access files that would otherwise be inaccessible using a directory traversal attack.

Affected Software

Apache 2.0 through 2.0.39 on Windows

Detection Method

Sends a crafted GET request and checks the response.

Solution

Upgrade to Apache 2.0.40 or later. As a workaround add in the httpd.conf, before the first 'Alias' or 'Redirect' directive: RedirectMatch 400 \\\.\.

Common Vulnerabilities and Exposures (CVE)

CVE-2002-0661

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

Apache 2.0.39 Win32 directory traversal

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Detection Method

Detection Method

Solution

Solution

Common Vulnerabilities and Exposures (CVE)