ownCloud Improper Authentication Vulnerability (CVE-2012-4392)

Description

index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote attackers to bypass authentication via a crafted oc_token cookie value.

Remediation

References

CVE-2012-4392

Related Vulnerabilities

Oracle Database Server CVE-2008-1819 Vulnerability (CVE-2008-1819)

phpMyFAQ Other Vulnerability (CVE-2005-3050)

WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.2.0)

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2003-0095)

MySQL CVE-2022-21348 Vulnerability (CVE-2022-21348)

Severity

High

Classification

CVE-2012-4392 CWE-287

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities