| VID |
22410 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Fedora Directory Server is vulnerable to an information-disclosure vulnerability. Fedora Directory Server is a directory server implementation for Fedora Core. The Administration Server in Fedora Directory Server version 1.0 could allow a remote, unauthenticated attacker to retrieve the admin password hash by issuing a simple GET request for '/admin-serv/config/admpw'. This issue is due to a failure in the application to do proper access validation before granting access to sensitive and privileged information. A remote attacker could exploit this vulnerability to obtain escalated privileges within the context of the server application.
* References:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174837
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=121994
http://directory.fedora.redhat.com/wiki/FDS10Announcement
http://secunia.com/advisories/18939
* Platforms Affected:
RedHat Fedora Directory Server version 1.0
Linux Any version |
| Recommendation |
Upgrade to the latest version of RedHat Fedora Directory Server (1.0.1 or later), available from the Fedora Directory Server Download Web site at http://directory.fedora.redhat.com/wiki/Download |
| Related URL |
CVE-2005-3630 (CVE) |
| Related URL |
16729 (SecurityFocus) |
| Related URL |
(ISS) |
|
