CVE-2000-0176

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Feb 29, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0176 is a vulnerability affecting Serv-U 2.5d and earlier versions. This issue arises due to the default configuration, which enables attackers to obtain the real pathname of the server by requesting a URL for a non-existent directory or file. This information disclosure can potentially be used for further exploitation and unauthorized access to the system. Organizations using Serv-U are advised to update to a patched version or configure the server to prevent the disclosure of pathnames to unauthorized users.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlYoN
https://www.cve.org/CVERecord?id=CVE-2000-0176
https://nvd.nist.gov/vuln/detail/CVE-2000-0176

Back to Vulnerability Database

CVE-2000-0176

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations