The CiviCRM footer may have been displayed to users without "access CiviCRM" permission under certain conditions. The footer shows limited version information and upgrade notifications, which could be used by an attacker to identify vulnerabilities based on whether the installed version is up-to-date.
4.4, 4.5, 4.6
4.4.20, 4.6.10
Upgrade to the latest version of CiviCRM, which ensures the footer will never be shown to users without "access CiviCRM" permission.
4.4.20 or 4.6.10
Reported by John Kingsnorth and Alex Corr
Fixed by Coleman Watts
4.4 backport by Eileen McNaughton
Fix for 4.6: https://github.com/civicrm/civicrm-core/pull/7101
Fix for 4.4: https://github.com/civicrm/civicrm-core/pull/7102