CVE-2013-1939 in ownCloudinformazioni

Riassunto

di MITRE

The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

19/02/2013

Divulgazione

14/03/2014

Moderazione

accettato

CPE

pronto

EPSS

0.01779

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!