Apache 1.3.*-2.0.48 remote users disclosure exploit - Checks Apache webservers for a wrong default configuration of mod_userdir which allows account name guessing and then attempts to login to the found accounts with ftp. Effective against Linux and *BSD boxes.
9ebf9d02a9390c8ff2fee63f5a4681199fc9a1055bff1cbd68bce1199fcc32d8