Case Insensitive File Access Vulnerability in Apache for Apple Mac OS X 10.2.8 and 10.3.6

Case Insensitive File Access Vulnerability in Apache for Apple Mac OS X 10.2.8 and 10.3.6

CVE-2004-1083 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization.

Learn more about our Api Penetration Testing.