CVE-2011-4091

libnet6 <1.3.14 - Info Disclosure

Title source: llm

Description

The libobby server in inc/server.hpp in libnet6 (aka net6) before 1.3.14 does not perform authentication before checking the user name, which allows remote attackers to obtain sensitive information such as server-usage patterns by a particular user and color preferences.

References (7)

Scores

EPSS 0.0064
EPSS Percentile 70.2%

Classification

CWE
CWE-287
Status draft

Affected Products (16)

opensuse/opensuse
opensuse/opensuse
oracle/solaris
armin_burgmeier/net6 < 1.3.13
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
armin_burgmeier/net6
... and 1 more

Timeline

Published Feb 10, 2014
Tracked Since Feb 18, 2026