CVE-2006-4907 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-4907

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

OSU 3.11alpha and 3.10a allows remote attackers to obtain sensitive information via a URL to a non-existent file, which displays the web root path in the resulting error message.

Affected Software

Name	Vendor	Start Version	End Version
Osu_httpd	Ohio_state_university	3.10a (including)	3.10a (including)
Osu_httpd	Ohio_state_university	3.11alpha (including)	3.11alpha (including)

References

http://secunia.com/advisories/22016
http://securityreason.com/securityalert/1602
http://www.securityfocus.com/archive/1/446372/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/29031
http://secunia.com/advisories/22016
http://securityreason.com/securityalert/1602
http://www.securityfocus.com/archive/1/446372/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/29031