Red Hat Linux Apache Remote Username Enumeration Vulnerability
Severity: MEDIUM
Advisory Date: JUL 21, 2015
DESCRIPTION
Apache on Red Hat Linux with the UserDir directive enabled generates different error codes when a username exists and there is no public_html directory and when the username does not exist, which could allow remote attackers to determine valid usernames on the server.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005642