Fedora Directory Server before 10 allows remote attackers to obtain sensitive information, such as the password from adm.conf via an IFRAME element, probably involving an Apache httpd.conf configuration that orders "allow" directives before "deny" directives.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2006-02-24T00:00:00Z
Updated: 2024-09-17T01:21:04.219Z
Reserved: 2005-11-16T00:00:00Z
Link: CVE-2005-3630
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2005-12-31T05:00:00.000
Modified: 2008-09-05T20:54:51.337
Link: CVE-2005-3630
Redhat
No data.