|
Family: Debian Local Security Checks --> Category: infos
[DSA021] DSA-021-1 apache Vulnerability Scan
Vulnerability Scan Summary DSA-021-1 apache
Detailed Explanation for this Vulnerability Test
WireX have found some occurrences of insecure opening of
temporary files in htdigest and htpasswd. Both programs are not installed
setuid or setgid and thus the impact should be minimal. The Apache group has
released another security bugfix which fixes a vulnerability in mod_rewrite
which may result the remote attacker to access arbitrary files on the web
server.
Solution : http://www.debian.org/security/2001/dsa-021
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|