CVE-2001-1072 Information

Description

Apache with mod_rewrite enabled on most UNIX systems allows remote attackers to bypass RewriteRules by inserting extra / (slash) characters into the requested path which causes the regular expression in the RewriteRule to fail.

Reference

http://www.apacheweek.com/issues/02-02-01security http://www.securityfocus.com/archive/1/203955 http://www.securityfocus.com/bid/3176 https://exchange.xforce.ibmcloud.com/vulnerabilities/8633