CVE-2006-4798

Publication date 14 September 2006

Last updated 24 July 2024


Ubuntu priority

SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.

Status

Package Ubuntu Release Status
sql-ledger 7.10 gutsy
Fixed 2.4.5-1
7.04 feisty
Fixed 2.4.5-1
6.10 edgy
Fixed 2.4.5-1
6.06 LTS dapper
Fixed 2.4.5-1