Apache – CVE-2001-0731

Description

Cytrix has detected that the Version of Apache being used could be vulnerable and might be causing a information disclosure. Also known as CVE-2001-0731.

It can be done by abusing the fact that Multiviews is enabled.
That will allow remote attackers to view directory contents and bypass the index page via a URL containing the “M=D” query string.

That will lead to information being disclosed.

Recommendation

To fix CVE-2001-0731, upgrade the version of Apache HTTP Server being used to 1.3.22 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0731