PT-2004-2060 · Apache+1 · Apache+1

Published

2004-12-02

Updated

2017-07-11

CVE-2004-1084

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Apache for Apple Mac OS X version 10.2.8 Apache for Apple Mac OS X version 10.3.6

Description: The issue allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles.

Recommendations: For Apache for Apple Mac OS X version 10.2.8, update to a version that fixes this issue. For Apache for Apple Mac OS X version 10.3.6, update to a version that fixes this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1084

Affected Products

Apache

Macos X

PT-2004-2060 · Apache+1 · Apache+1

CVE-2004-1084

Related Identifiers

Affected Products

References · 8