Nessus Plugin #14858
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA021] DSA-021-1 apache
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-021-1 apache
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2001-0131
- Bugtraq_id:
- 2182
- Xrefs:
- DSA:021
- Description:
- WireX have found some occurrences of insecure opening of
temporary files in htdigest and htpasswd. Both programs are not installed
setuid or setgid and thus the impact should be minimal. The Apache group has
released another security bugfix which fixes a vulnerability in mod_rewrite
which may result the remote attacker to access arbitrary files on the web
server.
Solution : http://www.debian.org/security/2001/dsa-021
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.