3 matches found
Open-Xchange Security Advisory 2013-07-31
Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 27473 Bug ID Vulnerability type: Phishing / Data injection Vulnerable version: 7.2.2 and earlier Vulnerable component: backend Fixed version: 7.2.2-rev9, 7.2.1-rev10, 7.2.0-rev11, 7.0.2-rev14 Solution status: Fixed by...
CVE-2013-4790
Open-Xchange AppSuite is affected by CVE-2013-4790. Versions prior to 7.0.2 rev14, 7.2.0 rev11, 7.2.1 rev10, and 7.2.2 rev9 rely on user-supplied data to predict the IMAP server hostname for an external domain, enabling remote authenticated users to discover other users’ email credentials through...
Open-Xchange AppSuite 7.2.2 Phishing / Data Injection
Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 27473 Bug ID Vulnerability type: Phishing / Data injection Vulnerable version: 7.2.2 and earlier Vulnerable component: backend Fixed version: 7.2.2-rev9, 7.2.1-rev10, 7.2.0-rev11, 7.0.2-rev14 Solution status: Fixed by...