CVE-2006-1062

Name of the Vulnerable Software and Affected Versions: Lurker versions 2.0 and earlier

Description: The issue concerns multiple vulnerabilities in the Lurker package of the Debian GNU/Linux operating system, which can be exploited remotely to compromise the confidentiality of protected information. The vulnerability in lurker.cgi allows attackers to read arbitrary files.

Recommendations: For versions 2.0 and earlier, consider restricting access to the lurker.cgi script until a patch is available. As a temporary workaround, consider disabling the lurker.cgi script to prevent exploitation.