November 27, 2001

Redhat Stronghold Secure Server file disclosure

Author: JT Smith

Net-Security: "In Redhat Stronghold from versions 2.3 up to 3.0 a flaw exists that allows a remote
attacker to disclose sensitive system files including the httpd.conf file, if a restricted
access to the server status report is not enabled when using those features. This may
assist an attacker in performing further attacks."


  • Linux
Click Here!