Description

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

Remediation

References

CVE-2015-4718

Related Vulnerabilities

PHP Resource Management Errors Vulnerability (CVE-2011-1468)

PHP Resource Management Errors Vulnerability (CVE-2012-0789)

WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Open Redirect (1.85)

WordPress Plugin Bulk Datetime Change Security Bypass (1.11)

WordPress Plugin WP Page Builder Cross-Site Scripting (1.2.8)

Severity

Critical

Classification

CVE-2015-4718 CWE-138

Tags

Missing Update Known Vulnerabilities