Lucene search

Ubuntu.comUB:CVE-2006-4938

HistorySep 23, 2006 - 12:00 a.m.

CVE-2006-4938

2006-09-2300:00:00

ubuntu.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS

0.001

Percentile

46.7%

JSON

help.php in Moodle before 1.6.2 does not check the existence of certain
help files before including them, which might allow remote authenticated
users to obtain the path in an error message.

References

launchpad.net/bugs/cve/CVE-2006-4938

nvd.nist.gov/vuln/detail/CVE-2006-4938

security-tracker.debian.org/tracker/CVE-2006-4938

www.cve.org/CVERecord?id=CVE-2006-4938

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS

0.001

Percentile

46.7%

JSON

Related for UB:CVE-2006-4938