Lucene search
Redhat.comRH:CVE-2001-1013HistoryNov 05, 2015 - 9:28 a.m.
CVE-2001-1013
2015-11-0509:28:47
redhat.com
access.redhat.com
7
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.036
Percentile
91.7%
Apache on Red Hat Linux with with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server.
Related
cve
cve
CVE-2001-1013
2002-02-02 05:00:00
cvelist
cvelist
CVE-2001-1013
2002-02-02 05:00:00
nvd
nvd
CVE-2001-1013
2001-09-12 04:00:00
exploitdb
exploitdb
RedHat Linux 7.0 Apache - Remote Username Enumeration
2001-09-12 00:00:00
packetstorm
packetstorm
Apache Mod_userdir User Enumeration
2024-09-01 00:00:00
metasploit
metasploit
Apache "mod_userdir" User Enumeration
2011-08-15 05:56:55
openvas
openvas
Nmap NSE 6.01: http-userdir-enum
2013-02-28 00:00:00
Nmap NSE net: http-userdir-enum
2011-06-01 00:00:00
Apache UserDir Sensitive Information Disclosure
2005-11-03 00:00:00
nessus
nessus
Apache UserDir Directive Username Enumeration
2001-09-18 00:00:00
nmap
nmap
http-userdir-enum NSE Script
2009-08-22 22:04:32
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.036
Percentile
91.7%
Related for RH:CVE-2001-1013