← CVECheck
HomeVulnerabilities

CVE-2000-1191 — MEDIUM severity vulnerability (htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlie)

htsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.

CVE IDCVE-2000-1191
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWECWE-209
StatusModified
Published2001-08-31
Last modified2026-04-16
Descriptionhtsearch program in htDig 3.2 beta, 3.1.6, 3.1.5, and earlier allows remote attackers to determine the physical path of the server by requesting a non-existent configuration file using the config parameter, which generates an error message that includes the full path.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →