Apache HTTP Server, when running on Linux with a document root on a Windows share mounted using smbfs, allows remote attackers to obtain unprocessed content such as source files for .php programs via a trailing "\" (backslash), which is not handled by the intended AddType directive.
References
Information
Published : 2007-12-21 14:46
Updated : 2018-10-15 14:54
NVD link : CVE-2007-6514
Mitre link : CVE-2007-6514
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
apache
- http_server
linux
- linux_kernel