Friday, June 29, 2007

FrSIRT Security Advisories - Novell NetWare Apache HTTP-Header Remote Information Disclosure Vulnerability / Exploit

FrSIRT Security Advisories - Novell NetWare Apache HTTP-Header Remote Information Disclosure Vulnerability / Exploit

A vulnerability has been identified in Novell NetWare and GroupWise, which could be exploited by remote attackers to gain knowledge of sensitive information. This issue is caused by an error in Apache that exposes system specifics in the "Content-Location" HTTP header, which could be exploited by attackers to disclose the internal IP of an Apache web server sitting behind a Proxy server or NAT device.

0 Comments:

Post a Comment

Links to this post:

Create a Link

<< Home