Summary
The host is installed with ownCloud and
is prone to authentication bypass vulnerability
Impact
Successful exploitation will allow
remote attackers to bypass authentication and login to the remote server.
Impact Level: Application
Solution
Upgrade to ownCloud Server 5.0.18 or
6.0.6 or later. For updates refer to http://owncloud.org
Insight
The error exists due to a flaw in the
user_external FTP backend provider that is triggered as URL-encoding on passwords is not properly performed
Affected
ownCloud Server 5.x before 5.0.18 and
6.x before 6.0.6
Detection
Get the installed version with the
help of detect NVT and check the version is vulnerable or not.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2014-9045 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
Related Vulnerabilities