Product

About

Free Cyber Assessment

published date: March 12, 2001

CVE-2001-0131 : htpasswd and htdigest in...

Description

htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack.

Product(s):

Apache Software Foundation Apache HTTP Server 1.3.14
Apache Software Foundation HTTP Server 2.0 Alpha 9
Debian Debian Linux 2.2

CVSS:3.3 [Critical]
EPSS:0.11%
Exploitability:3.4
In KEV:No

Question to Ask Vendors:

Can you confirm whether your systems are affected by CVE-2001-0131, and if so, what steps are you currently taking to mitigate this vulnerability?
What is your estimated timeline for fully resolving CVE-2001-0131 in your products or services, and how will you communicate updates on this issue to us as your customer?

Recommended Actions:

Check out the advisory links provided below.

References:

READY TO GET RESULTS YOU CAN TRUST?

Get a Demo Contact Sales