ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
BID:58108
Info
ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
| Bugtraq ID: | 58108 |
| Class: | Design Error |
| CVE: |
CVE-2013-0302 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 21 2013 12:00AM |
| Updated: | Feb 21 2013 12:00AM |
| Credit: | Reported by vendor. |
| Vulnerable: |
ownCloud ownCloud 4.0.9 ownCloud ownCloud 4.0.7 ownCloud ownCloud 4.0.6 ownCloud ownCloud 4.0.5 ownCloud ownCloud 4.0.4 ownCloud ownCloud 4.0.3 ownCloud ownCloud 4.0.2 ownCloud ownCloud 4.0.11 ownCloud ownCloud 4.0.10 ownCloud ownCloud 4.0.1 |
| Not Vulnerable: |
ownCloud ownCloud 4.0.12 |
Discussion
ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
ownCloud is prone to an unspecified remote information-disclosure vulnerability.
An authenticated attacker can exploit this issue to gain access to sensitive information that may aid in further attacks.
ownCloud versions prior to 4.0.12 are vulnerable.
ownCloud is prone to an unspecified remote information-disclosure vulnerability.
An authenticated attacker can exploit this issue to gain access to sensitive information that may aid in further attacks.
ownCloud versions prior to 4.0.12 are vulnerable.
Exploit / POC
ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
Attackers can use a browser to exploit this issue.
Attackers can use a browser to exploit this issue.
Solution / Fix
ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
ownCloud CVE-2013-0302 Unspecified Information Disclosure Vulnerability
References:
References:
- ownCloud Homepage (ownCloud)
- ownCloud Security Advisories (oss-sec)
- Information disclosure (oC-SA-2013-005) (ownCloud)