Bozotic · Bozohttpd · CVE-2010-2320
**Name of the Vulnerable Software and Affected Versions**
bozotic HTTP server (aka bozohttpd) versions prior to 20100621
**Description**
The issue allows remote attackers to list the contents of home directories and determine the existence of user accounts via multiple requests for URIs beginning with `/~` sequences.
**Recommendations**
For versions prior to 20100621, update to a version released after 20100621 to resolve the issue.