Sensitive Information Disclosure in Apache HTTP Server 1.3.22-1.3.27 on OpenBSD

Sensitive Information Disclosure in Apache HTTP Server 1.3.22-1.3.27 on OpenBSD

CVE-2003-1418 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, which reveals child process IDs (PID).

Learn more about our Cis Benchmark Audit For Server Software.