Uploaded image for project: 'Satellite'
  1. Satellite
  2. SAT-28696

Apache Multiviews Arbitrary Directory Listing Issue on Red Hat Capsule

XMLWordPrintable

    • Important
    • None

      Description of problem:

      Apache Multiviews Arbitrary Directory Listing Issue on Red Hat Capsule

      Version-Release number of selected component (if applicable):

      How reproducible:

      100%

      Steps to Reproduce:
      -------------------
      1.Try to access the Capsule URL through your browser or using the curl command:

      curl https://capsule.example.com/?M=A

      Actual results:
      --------------

      Nessus was able to exploit the issue using the following request :

      curl https://capsule.example.com/?M=A

      <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
      <html>
      <head>
      <title>Index of /</title>
      </head>
      <body>
      <h1>Index of /</h1>
      <table>
      <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr>
      <tr><th colspan="5"><hr></th></tr>
      <tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="cgi-bin/">cgi-bin/</a></td><td align="right">2022-03-22 11:36 </td><td align="right"> - </td><td> </td></tr>
      <tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="html/">html/</a></td><td align="right">2022-03-22 11:36 </td><td align="right"> - </td><td> </td></tr>
      <tr><th colspan="5"><hr></th></tr>
      </table>
      </body></html>

      Expected results:

      This Nessus vulnerability (CVE-2001-0731 ) should be fixed.

      Additional info:

              ekohlvan@redhat.com Ewoud Kohl van Wijngaarden
              rhn-support-sadas Satyajit Das
              Radek Mynar Radek Mynar
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: