Cobalt RaQ 2.0/3.0 - Apache .htaccess Disclosure
| EKU-ID: 25413 | CVE: CVE-2000-0234;OSVDB-1269 | OSVDB-ID: |
| Author: Paul Schreiber | Published: 2000-03-31 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 25413 | CVE: CVE-2000-0234;OSVDB-1269 | OSVDB-ID: |
| Author: Paul Schreiber | Published: 2000-03-31 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/1083/info The default configuration of Cobalt Raq2 and Raq3 servers allows remote access to .htaccess files. This could lead to unauthorized retrieval of username and password information for restricted portions of a website hosted on the server. Make a regular GET request, specifying an .htaccess file ie: http ://target/path/.htaccess