Back to search
CVE-2005-3630
Published: Feb 24, 2006
Modified: Sep 17, 2024
PUBLISHED
Description
Fedora Directory Server before 10 allows remote attackers to obtain sensitive information, such as the password from adm.conf via an IFRAME element, probably involving an Apache httpd.conf configuration that orders "allow" directives before "deny" directives.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://directory.fedora.redhat.com/wiki/FDS10Announcement
x_refsource_CONFIRM
16729
vdb-entry
x_refsource_BID
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=121994
x_refsource_MISC
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174837
x_refsource_CONFIRM
18939
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now