CVE-2000-0208

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Feb 29, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0208 is a vulnerability affecting the htdig (ht://Dig) CGI program's htsearch feature. Attackers can exploit this weakness by inputting file names enclosed in backticks (`) in certain parameters to htsearch, allowing them to read arbitrary files on the targeted system remotely. This issue poses a significant security risk, as sensitive information could be accessed and potentially misused by unauthorized individuals. To mitigate this threat, it is recommended that affected systems be updated to the latest version of htdig or that the htsearch functionality be disabled if it is not needed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlaAb
https://www.cve.org/CVERecord?id=CVE-2000-0208
https://nvd.nist.gov/vuln/detail/CVE-2000-0208

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-2000-0208

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations