CVE-2016-1607

2016-07-31T22:59:03
ID CVE-2016-1607
Type cve
Reporter NVD
Modified 2017-09-02T21:29:04

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr before 2.0 Security Update 2 allow remote attackers to hijack the authentication of administrators, as demonstrated by reconfiguring time settings via a vaconfig/time request.