CVE-2001-0131

low Apache
CVSS v3 Base Score
3.3
AV:L/AC:M/Au:N/C:N/I:P/A:P
EPSS Score
0.1%
Exploitation probability in 30 days
Top 70% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
M
Confidentiality
None
Integrity
P
Availability
P
Published: March 12, 2001 (9194 days ago)
Last Modified: April 16, 2026
Vendor: Apache
Source: NVD

Description

htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack.

CWE

CWE-59

Affected Products

apache http serverdebian debian linux

References

🔗 marc.info 🔗 www.debian.org 🔗 www.securityfocus.com 🔗 exchange.xforce.ibmcloud.com 🔗 marc.info