208299 – CVE-2006-4976: php-adodb information disclosure

Bug 208299 - CVE-2006-4976: php-adodb information disclosure

Summary: CVE-2006-4976: php-adodb information disclosure

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	php-adodb
Sub Component:
Version:	5
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Aurelien Bompard
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:	http://nvd.nist.gov/nvd.cfm?cvename=C...
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-09-27 19:05 UTC by Ville Skyttä
Modified:	2007-11-30 22:11 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2007-01-11 13:29:21 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Ville Skyttä 2006-09-27 19:05:02 UTC

CVE-2006-4976: The Date Library in John Lim ADOdb Library for PHP allows remote
attackers to obtain sensitive information via a direct request for [...]

There's not much information about this issue (?) available at the moment.

Comment 1 Aurelien Bompard 2006-09-28 14:28:15 UTC

I've asked the author about this. He wasn't warned.
http://phplens.com/lens/lensforum/msgs.php?id=15890

Comment 2 Aurelien Bompard 2007-01-11 13:29:21 UTC

As seen in this thread, it seems there is no threat.

Note You need to log in before you can comment on or make changes to this bug.