VYPR
Unrated severityNVD Advisory· Published Aug 31, 2001· Updated Jun 16, 2026

CVE-2000-1191

CVE-2000-1191

Description

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.

Affected products

3
  • Htdig/Htdig3 versions
    cpe:2.3:a:htdig_project:htdig:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:htdig_project:htdig:*:*:*:*:*:*:*:*range: <=3.1.6
    • cpe:2.3:a:htdig_project:htdig:3.2.0:beta1:*:*:*:*:*:*
    • (no CPE)range: <=3.1.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.