← Back to branch summary

~wgrant/ubuntu-cve-tracker/main

« back to all changes in this revision

Viewing changes to active/CVE-2006-6071

  • Committer: Kees Cook
  • Date: 2008-09-19 21:55:36 UTC
  • Revision ID: kees.cook@canonical.com-20080919215536-xv2fttw2hoozmih4
update all Publication Dates

Show diffs side-by-side

added added

removed removed

Lines of Context:
active/CVE-2006-6071
1
1
Candidate: CVE-2006-6071
2
2
References:
3
3
Description:
 
4
 TWiki 4.0.5 and earlier, when running under Apache 1.3 using ApacheLogin
 
5
 with sessions and "ErrorDocument 401" redirects to a valid wiki topic, does
 
6
 not properly handle failed login attempts, which allows remote attackers to
 
7
 read arbitrary content by cancelling out of a failed authentication with a
 
8
 valid username and invalid password.
4
9
Ubuntu-Description:
5
10
Notes:
6
11
Bugs: