Lucene search
Ubuntu.comUB:CVE-2013-2089HistoryMar 14, 2014 - 12:00 a.m.
CVE-2013-2089
2014-03-1400:00:00
ubuntu.com
ubuntu.com
8
CVSS2
4.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
EPSS
0.002
Percentile
56.3%
Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote
authenticated users to execute arbitrary PHP code by uploading a crafted
file, then accessing it via a direct request to the file in /data.
Notes
| Author | Note |
|---|---|
| jdstrand | per upstream, 5.0 only |
Related
owncloud
owncloud
Server: Incomplete blacklist vulnerability
2013-05-14 11:42:22
Incomplete blacklist vulnerability - ownCloud
2013-05-14 18:12:51
prion
prion
Design/Logic Flaw
2014-03-14 16:55:00
nvd
nvd
CVE-2013-2089
2014-03-14 16:55:05
cvelist
cvelist
CVE-2013-2089
2014-03-14 16:00:00
cve
cve
CVE-2013-2089
2014-03-14 16:55:05
openvas
openvas
ownCloud Multiple Vulnerabilities - 01 (May 2014)
2014-05-06 00:00:00
freebsd
freebsd
owncloud -- Multiple security vulnerabilities
2013-05-14 00:00:00
nessus
nessus
CVSS2
4.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
EPSS
0.002
Percentile
56.3%
Related for UB:CVE-2013-2089