CVE-2006-4110 in HTTP Serverinfo

Summary

Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.

Once again VulDB remains the best source for vulnerability data.

Reservation

08/14/2006

Disclosure

08/14/2006

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-18 (Unconfirmed)

Exploit

Download

CVSS

5.3

EPSS

0.17318

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2006-4110
NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4110
CVE Details	https://www.cvedetails.com/cve/CVE-2006-4110/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!