CVE-2012-4392

2012-09-05T19:55:02
ID CVE-2012-4392
Type cve
Reporter NVD
Modified 2012-09-13T00:00:00

Description

index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote attackers to bypass authentication via a crafted oc_token cookie value.