← CVECheck
HomeVulnerabilities

CVE-2001-0892 — MEDIUM severity vulnerability (Acme Thttpd Secure Webserver before 2.22, with the chroot op)

Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.

CVE IDCVE-2001-0892
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWECWE-668
StatusModified
Published2001-11-13
Last modified2026-04-16
DescriptionAcme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →