CVE-2010-0004
Publication date 29 January 2010
Last updated 24 July 2024
Ubuntu priority
ViewVC before 1.1.3 composes the root listing view without using the authorizer for each root, which might allow remote attackers to discover private root names by reading this view.