CVE-2007-6514

Apache HTTP Server, when running on Linux with a document root on a Windows share mounted using smbfs, allows remote attackers to obtain unprocessed content such as source files for .php programs via a trailing "" (backslash), which is not handled by the intended AddType directive.

Published: Dec 21, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-6514
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
apache / http_server	2.2.6	2.2.6.x

http://securityreason.com/securityalert/3479
http://www.securityfocus.com/archive/1/485316/100/0/threaded
http://www.securityfocus.com/bid/26939
https://exchange.xforce.ibmcloud.com/vulnerabilities/39158

Vulnerability Database

290,278

CVE-2007-6514