CVE-2004-2576

2004-12-31T00:00:00
ID CVE-2004-2576
Type cve
Reporter NVD
Modified 2017-07-10T21:32:01

Description

class.vfs_dav.inc.php in phpGroupWare 0.9.16.000 does not create .htaccess files to enable authorization checks for access to users' home-directory files, which allows remote attackers to obtain sensitive information from these files.