Apache 2 WebDAV CGI POST Request Information Disclosure Vulnerability

Bugtraq ID:	6065
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2002-1156
Remote:	Yes
Local:	No
Published:	Oct 29 2002 12:00AM
Updated:	Jul 11 2009 06:06PM
Credit:	Vulnerability first detailed in the product changelog.
Vulnerable:	HP VirtualVault 4.6 - HP HP-UX 11.0 4 HP VirtualVault 4.5 - HP HP-UX 11.0 4 HP OpenView Network Node Manager 6.2 Solaris - Sun Solaris 2.5.1 - Sun Solaris 8_sparc - Sun Solaris 7.0 - Sun Solaris 2.6 HP OpenView Network Node Manager 6.2 HP-UX 11.X - HP HP-UX 11.11 - HP HP-UX 11.0 HP OpenView Network Node Manager 6.2 HP-UX 10.X - HP HP-UX 10.20 HP HP-UX 11.22 HP HP-UX 11.20 HP HP-UX 11.11 HP HP-UX 11.0 Apache Apache 2.0.42 + Gentoo Linux 1.4 _rc1 + Gentoo Linux 1.2 Apache Apache 2.0.41 Apache Apache 2.0.40 + Redhat Linux 9.0 i386 + Redhat Linux 8.0 + Terra Soft Solutions Yellow Dog Linux 3.0 Apache Apache 2.0.39 Apache Apache 2.0.38 Apache Apache 2.0.37 Apache Apache 2.0.36 Apache Apache 2.0.35 Apache Apache 2.0

Not Vulnerable:	HP OpenView Network Node Manager 5.0.2 Windows NT 3.51/4.0 HP OpenView Network Node Manager 5.0 1 Solaris - Sun Solaris 8_sparc - Sun Solaris 7.0 - Sun Solaris 2.6 - Sun Solaris 2.5 - Sun Solaris 2.4 HP OpenView Network Node Manager 5.0 1 HP-UX - HP HP-UX 10.34 - HP HP-UX 10.30 - HP HP-UX 10.20 - HP HP-UX 10.16 - HP HP-UX 10.10 - HP HP-UX 10.9 - HP HP-UX 10.8 - HP HP-UX 10.1 0 - HP HP-UX 10.0 1 - HP HP-UX 10.0 - HP HP-UX (VVOS) 10.24 HP OpenView Network Node Manager 5.0 1 - HP HP-UX 11.0 - HP HP-UX 10.20 - Sun Solaris 8_sparc - Sun Solaris 7.0 - Sun Solaris 2.6 Apache Apache 2.0.43