Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-1016. PoCs published by t0maszek.
AI-analyzed exploit summary This exploit describes an information disclosure vulnerability in S.u.S.E 6.3 or 6.4 systems due to misconfigured Apache httpd.conf, allowing unauthenticated access to the list of installed packages via a specific URL.
Description
The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packages URL.
Exploits (1)
This exploit describes an information disclosure vulnerability in S.u.S.E 6.3 or 6.4 systems due to misconfigured Apache httpd.conf, allowing unauthenticated access to the list of installed packages via a specific URL.