Security Flaw in ViewVC Affects Private Root Listing Disclosure
CVE-2010-0004

Currently unrated

Key Information:

Vendor

Viewvc

Status
Viewvc
Vendor
CVE Published:
29 January 2010

What is CVE-2010-0004?

The vulnerability in ViewVC prior to version 1.1.3 allows attackers to view root listings without proper authorization checks. This lack of access control can lead to the exposure of sensitive root names, potentially compromising important information. By manipulating certain requests, remote attackers may access hidden resources, making it essential for users to upgrade to a more secure version to prevent unauthorized data exposure.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://viewvc.tigris.org/source/browse/viewvc/trunk/CHANG...
x_refsource_CONFIRM
https://www.redhat.com/archives/fedora-package-announce/2...
vendor-advisoryx_refsource_FEDORA
http://www.openwall.com/lists/oss-security/2010/01/13/5
mailing-listx_refsource_MLIST

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.