CVE-2000-1206

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Aug 20, 1999

Updated: Nov 20, 2024

Summary

CVE-2000-1206 is a vulnerability affecting Apache httpd servers prior to version 1.3.11. When configured for mass virtual hosting using mod_rewrite or mod_vhost_alias in Apache 1.3.9, this issue allows remote attackers to access arbitrary files. By exploiting this weakness, an adversary can obtain sensitive information or potentially execute malicious code. This vulnerability underscores the importance of keeping web servers updated to mitigate potential security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apache Software Foundation Apache HTTP Server

Affected Vendors

Apache Software Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWldd5
https://www.cve.org/CVERecord?id=CVE-2000-1206
https://nvd.nist.gov/vuln/detail/CVE-2000-1206

Back to Vulnerability Database