https://www.exploit-db.com/exploits/20236
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200012-057

SuSE6.4版本的Apache(httpd.conf)的默认配置包含/usr/doc目录的别名。远程攻击者借助/doc/packagesURL的HTTP请求读取数据包文档和获得系统配置信息。

source: http://www.securityfocus.com/bid/1707/info

By submitting a specific url to the web server ("http://hosts.any/doc/packages/") , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configuration in the Apache httpd.conf supplied with S.u.S.E that permits anyone to request documents from this webroot subdirectory. The end result is that attackers will know what packages the victim has installed, which can assist in executing more complicated attacks.

Request "http://target/doc/packages/" with a web browser.

来源:XF
名称:suse-installed-packages-exposed
链接:http://xforce.iss.net/static/5276.php
来源:BID
名称:1707
链接:http://www.securityfocus.com/bid/1707
来源:BUGTRAQ
名称:20000921httpd.confinSuse6.4
链接:http://www.securityfocus.com/archive/1/84360