CVE-2000-0913

Name of the Vulnerable Software and Affected Versions Apache versions 1.3.12 and earlier

Description The issue allows remote attackers to read arbitrary files on the web server under specific conditions. This occurs when the RewriteRule directive in the mod rewrite module is expanded to include a filename containing a regular expression, enabling access to any file on the server.

Recommendations For Apache versions 1.3.12 and earlier, consider disabling the mod rewrite module or restricting its use to minimize the risk of exploitation until a fix is available. As a temporary workaround, review and modify RewriteRule directives to avoid using regular expression references in the destination, thereby preventing unauthorized file access.