A user may instantiate arbitrary ownCloud classes due to a lack of a proper check of the mount point options provided by a user via the web front end. These may include constructor arguments and could potentially lead to a remote code execution.
The mount points are now properly validated in the controller before being stored.
The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:
CPE | Name | Operator | Version |
---|---|---|---|
owncloud server | lt | 7.0.9 | |
owncloud server | lt | 8.1.2 | |
owncloud server | lt | 8.0.7 |