header-logo
Suggest Exploit
vendor:
SUSE Linux Enterprise Server
by:
SecurityFocus
2.6
CVSS
LOW
Configuration Vulnerability
200
CWE
Product Name: SUSE Linux Enterprise Server
Affected Version From: S.u.S.E 6.3
Affected Version To: S.u.S.E 6.4
Patch Exists: YES
Related CWE: N/A
CPE: o:suse:suse_linux_enterprise_server:6.3
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2001

S.u.S.E 6.3/6.4 Apache httpd.conf Configuration Vulnerability

By submitting a specific url to the web server ("http://hosts.any/doc/packages/") , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configuration in the Apache httpd.conf supplied with S.u.S.E that permits anyone to request documents from this webroot subdirectory. The end result is that attackers will know what packages the victim has installed, which can assist in executing more complicated attacks.

Mitigation:

The Apache httpd.conf file should be configured to deny access to the /doc/packages/ directory.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/1707/info

By submitting a specific url to the web server ("http://hosts.any/doc/packages/") , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configuration in the Apache httpd.conf supplied with S.u.S.E that permits anyone to request documents from this webroot subdirectory. The end result is that attackers will know what packages the victim has installed, which can assist in executing more complicated attacks.

Request "http://target/doc/packages/" with a web browser.

Navigation

Suggest Exploit

Services By CQR