CVE-2000-1016 Information

Description

The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory which allows remote attackers to read package documentation and obtain system configuration information via an HTTP request for the /doc/packages URL.

Reference

http://www.securityfocus.com/archive/1/84360 http://www.securityfocus.com/bid/1707 https://exchange.xforce.ibmcloud.com/vulnerabilities/5276