CVE-2016-1776 — Vulnetix

Try Vulnetix Request Demo

CVE-2016-1776 PUBLISHED CVSS 5 MEDIUM

Web Server in Apple OS X Server before 5.1 does not properly restrict access to .DS_Store and .htaccess files, which allows remote attackers to obtain sensitive configuration information via an HTTP request.

EPSS 0.28% · 51.5th percentile

Risk Scores

CVSS v2.0

5

EPSS Score

0.28%

51.5th percentile

Affected Products

Vendor	Product	Versions
apple	mac_os_x_server	0
n/a	n/a	n/a

Timeline

Mar 22, 2016 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

https://support.apple.com/en-us/HT206173 advisory
https://support.apple.com/en-us/HT206169 advisory
https://support.apple.com/en-us/HT206168 advisory
https://support.apple.com/en-us/HT206171 advisory
https://support.apple.com/en-us/HT206166 advisory
https://support.apple.com/en-us/HT206172 advisory
https://support.apple.com/en-us/HT206167 advisory
1035342 vdb
85054 vdb
https://support.apple.com/HT206173 url
APPLE-SA-2016-03-21-7 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2016-1776 advisory

Open in Interactive Console →