Description

Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.

Remediation

References

CVE-2001-0766

Related Vulnerabilities

WordPress Plugin Eventify-Simple Events 'npath' Parameter Remote File Include (1.7.g)

Oracle Database Server CVE-2019-2940 Vulnerability (CVE-2019-2940)

WordPress Plugin Rate my Post-WP Rating System Multiple Vulnerabilities (3.3.4)

Internet Information Services Other Vulnerability (CVE-2001-0004)

WordPress Plugin Rencontre-Dating Site Multiple Vulnerabilities (3.1.2)

Severity

Critical

Classification

CVE-2001-0766 CWE-178 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities