CVE

Id
21011  
CVE No.
CVE-2006-4907  
Status
Candidate  
Description
OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL to a non-existent file, which displays the web root path in the resulting error message.  
Phase
Assigned (20060920)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
199202 21011 CVE-2006-4907 BUGTRAQ:20060918 [RLSA_02-2006] OSU httpd for OpenVMS path and directory disclosure - is this a bug or a feature?  View
199203 21011 CVE-2006-4907 URL:http://www.securityfocus.com/archive/1/archive/1/446372/100/0/threaded  View
199204 21011 CVE-2006-4907 SECUNIA:22016  View
199205 21011 CVE-2006-4907 URL:http://secunia.com/advisories/22016  View
199206 21011 CVE-2006-4907 SREASON:1602  View
199207 21011 CVE-2006-4907 URL:http://securityreason.com/securityalert/1602  View
199208 21011 CVE-2006-4907 XF:osu-httpd-error-path-disclosure(29031)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
59024 JVNDB-2006-001290 Cisco Guard DDoS Mitigation Appliance におけるクロスサイトスクリプティングの脆弱性 Cisco Guard DDoS Mitigation Appliance には、anti-spoofing が有効になっている際、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-4909 21011 2.6 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001290.html  View