GEN:SID 1:1167
Message WEB-MISC rpm_query access
Summary This event is generated when an attempt is made to gain information on installed packages on OpenLINUX.
Impact This is a serious information leak, since an attack could then attempt to determine and exploit any vulnerable packages.

Detailed Information The OpenLinux CGI package comes with a script called rpm_query. A
vulnerability exists which will allow a remote user to list all
packages/versions installed on the system. This information will be
useful for an attacker to further compromise a system.

Affected Systems OpenLinux Desktop 2.3        
        OpenLinux eServer 2.3        
Attack Scenarios GET http://target/cgi-bin/rpm_query HTTP/1.0
Ease of Attack Simple.
Corrective Action Remove the package (/home/httpd/cgi-bin/rpm_query)  

Upgrade to the latest version of OpenLinux (2.3-17 or later),
Additional References Bugtraq:
http://www.securityfocus.com/bid/1036
Rule References bugtraq: 1036
cve: 2000-0192
nessus: 10340