Apache Httpd CVE-2009-1195 Security Misconfiguration Vulnerability
Description
A flaw was found in the handling of the "Options" and "AllowOverride" directives. In configurations using the "AllowOverride" directive with certain "Options=" arguments, local users were not restricted from executing commands from a Server-Side-Include script as intended.
Affected Applications
Apache Httpd