1. Home
  2. CVE Database
  3. CVE-2006-4908
MEDIUM · 5.0

CVE-2006-4908

OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL containing an * (asterisk) wildcard, which displays all matching file and directory information.

Vulnerability Description

OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL containing an * (asterisk) wildcard, which displays all matching file and directory information.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
Ohio State UniversityOsu Httpd3.10a

References

FAQ

What is CVE-2006-4908?

CVE-2006-4908 is a vulnerability with a CVSS score of 5.0 (MEDIUM). OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL containing an * (asterisk) wildcard, which displays all matching file and directory information.

How severe is CVE-2006-4908?

CVE-2006-4908 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-4908?

Check the references section above for vendor advisories and patch information. Affected products include: Ohio State University Osu Httpd.