CVE-2006-4908

Medium

5/10

Summary

OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL containing an * (asterisk) wildcard, which displays all matching file and directory information.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Sep 21, 2006

CVE-2006-4908

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS