CVE-2013-7301

CVE-2013-7301

EPSS 1.5%

Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://code.google.com/p/cantata/issues/detail?id=356 http://seclists.org/oss-sec/2014/q1/121 http://seclists.org/oss-sec/2014/q1/124