Family: CGI abuses --> Category: attack
Fedora DS Administration Server Information Disclosure Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for an information disclosure vulnerability in Fedora Directory Server Administration Server
Detailed Explanation for this Vulnerability Test
The remote web server is affected by an information disclosure
The remote host appears to be running Fedora Directory Server, a
directory server implementation for Fedora Core.
The Administration Server, which is used to manage Fedora DS, allows
an unauthenticated attacker to retrieve the admin password hash
through a simple GET request.
See also :
Upgrade to Fedora Directory Server 1.0.1 or later.
Low / CVSS Base Score : 2.3
Click HERE for more information and discussions on this network vulnerability scan.