← voltar
CVE-2007-6383

CVE-2007-6383

EPSS 1.0%
The DAV component in Chandler Server (Cosmo) before 0.10.1 does not check resource creation permissions, which allows remote authenticated users to create arbitrary resources in another user's home collection.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.osafoundation.org/pipermail/cosmo-dev/2007-December/005442.htmlhttp://osvdb.org/44152https://bugzilla.osafoundation.org/show_bug.cgi?id=11587http://www.vupen.com/english/advisories/2007/4214