Closed Bug 795333 Opened 12 years ago Closed 12 years ago

server path information dis-closer in planet.mozilla.org

Categories

(Websites :: planet.mozilla.org, defect)

Product:
Websites
Component:
planet.mozilla.org
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: shashankcyberboy, Unassigned)

Details

http://planet.mozilla.org/ateam/atom.xml

Vulnerability description
One or more fully qualified path names were found on this page. From this information the attacker may learn the file system structure from the web server. This information can be used to conduct further attacks.

Pattern found: 
/etc/init.d/xvfb


http://planet.mozilla.org/interns/atom.xml

Pattern found: 
/usr/local/bin/mvim


http://planet.mozilla.org/research/rss10.xml

Pattern found: 
/usr/local/lib/LLVMgold.so
Very much invalid. Please double-check your results before posting what some automated scanner says.
Assignee: server-ops-devservices → nobody
Status: UNCONFIRMED → RESOLVED
Closed: 12 years ago
Component: CVS: Administration → planet.mozilla.org
OS: Windows 7 → All
Product: mozilla.org → Websites
QA Contact: shyam
Hardware: x86 → All
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.