Lucene search
K

6 matches found

securityvulns
securityvulns
added 2015/10/25 12:0 a.m.88 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq...

10CVSS3.2AI score0.2482EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2015/10/21 6:59 p.m.27 views

CVE-2015-4717

The filename sanitization component in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 does not properly handle $GET parameters cast by PHP to an array, which allows remote attackers to cause a denial of service infinite loop and log file consumption via crafted endpoint...

7.8CVSS5.9AI score0.02832EPSS
Exploits0References2
CVE
CVE
added 2015/10/21 6:0 p.m.75 views

CVE-2015-4717

CVE-2015-4717 affects ownCloud Server: the filename sanitization component fails to properly handle $_GET parameters cast to an array, allowing remote attackers to trigger a denial of service (infinite loop and log file consumption) via crafted endpoint file names. Affected versions are before 6....

7.8CVSS4.9AI score0.02832EPSS
Exploits0References3Affected Software2
Debian
Debian
added 2015/10/18 1:49 p.m.29 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...

10CVSS3.2AI score0.2482EPSS
Exploits0
Debian
Debian
added 2015/10/18 1:49 p.m.26 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...

10CVSS6.8AI score0.2482EPSS
Exploits0
OwnCloud
OwnCloud
added 2015/06/24 6:47 p.m.30 views

Resource Exthaustion when sanitizing filenames - ownCloud

The sanitization component for filenames was vulnerable to DoS when parsing specially crafted file names passed via specific endpoints. Effectively this lead to a endless loop filling the log file until the system is not anymore responsive. Affected Software ownCloud Server 6.0.8 CVE-2015-4717...

7.8CVSS5.7AI score0.02832EPSS
Exploits0Affected Software1
Rows per page
Query Builder