Unrated severityNVD Advisory· Published Aug 31, 2001· Updated Jun 16, 2026
CVE-2000-1191
CVE-2000-1191
Description
htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.
Affected products
3Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/4366nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/7367nvdThird Party AdvisoryVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10526nvdThird Party Advisory
- www.securiteam.com/exploits/htDig_reveals_web_server_configuration_paths.htmlnvdBroken Link
News mentions
0No linked articles in our index yet.