CVE-2006-4110
CVE-2006-4110
Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28365unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/21490http://securityreason.com/securityalert/1370https://exchange.xforce.ibmcloud.com/vulnerabilities/28357http://www.osvdb.org/27913http://www.securityfocus.com/archive/1/442882/100/0/threadedhttp://www.securityfocus.com/archive/1/443487/100/200/threadedhttp://www.securityfocus.com/bid/19447http://www.vupen.com/english/advisories/2006/3265