Description
Docview before 1.1-18 in Caldera OpenLinux 3.1.1, SCO Linux 4.0, OpenServer 5.0.7, configures the Apache web server in a way that allows remote attackers to read arbitrary publicly readable files via a certain URL, possibly related to rewrite rules.
Affected products
- caldera / openlinux_server3.1.1 – 3.1.1
- caldera / openlinux_workstation3.1.1 – 3.1.1
- caldera / openserver5.0.7 – 5.0.7
- sco / unixware7.1.3 – 7.1.3