CVE-2004-0533

2004-12-31T05:00:00
ID CVE-2004-0533
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:30:00

Description

Business Objects WebIntelligence 2.7.0 through 2.7.4 only enforces access controls on the client, which allows remote authenticated users to delete arbitrary files on the server via a crafted delete request using the InfoView web client.