[] NeoSense
E X P L O I T S
title author type platform port cve id

Caldera OpenLinux 2.3 - rpm_query CGI

Author: harikiri
type: remote
platform: cgi
port: 
date_added: 2000-03-05 
date_updated: 2012-07-13 
verified: 1 
codes: CVE-2000-0192;OSVDB-258 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/1036/info

A vulnerability exists in the default installation of Caldera OpenLinux 2.3. A CGI is installed in /home/httpd/cgi-bin/ names rpm_query. Any user can run this CGI and obtain a listing of the packages, and versions of packages, installed on this system. This could be used to determine vulnerabilities on the machine remotely.

Run the rpm_query CGI via a GET. It is located in /cgi-bin/rmp_query, relative to the root of the web server.
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.