CVE-2001-0131
Apache HTTP Server - Arbitrary File Overwrite via Symlink Attack
Title source: llmDescription
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2182
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5926
Third Party Advisory mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=97916374410647&w=2
Patch, Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2001/dsa-021
Scores
EPSS
0.0231
EPSS Percentile
81.1%
Details
CWE
CWE-59
Status
published
Products (3)
apache/http_server
1.3.14
apache/http_server
2.0 alpha9
debian/debian_linux
2.2
Published
Mar 12, 2001
Tracked Since
Feb 18, 2026