ID de Prueba:	1.3.6.1.4.1.25623.1.0.806078
Categoría:	Web application abuses
Título:	Open-Xchange (OX) App Suite Access Control Vulnerability
Resumen:	Open-Xchange (OX) App Suite is prone to an information disclosure vulnerability.
Descripción:	Summary: Open-Xchange (OX) App Suite is prone to an information disclosure vulnerability. Vulnerability Insight: The flaw is due to improper handling of directory permissions which allows reading files via unspecified vectors, related to the 'folder identifier'. Vulnerability Impact: Successful exploitation will allow remote authenticated users to access certain files on the target system that are not intended to be shared with them. Affected Software/OS: Open-Xchange (OX) App Suite versions before 7.4.2-rev42, 7.6.0 before 7.6.0-rev36, and 7.6.1 before 7.6.1-rev14 Solution: Update to version 7.4.2-rev42 or 7.6.0-rev36 or 7.6.1-rev14 or later. CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9466 BugTraq ID: 72587 http://www.securityfocus.com/bid/72587 Bugtraq: 20150212 Open-Xchange Security Advisory 2015-02-12 (Google Search) http://www.securityfocus.com/archive/1/534695/100/0/threaded http://packetstormsecurity.com/files/130379/Open-Xchange-Server-6-OX-AppSuite-7.6.1-Exposure.html http://www.securitytracker.com/id/1031744 XForce ISS Database: openxchange-cve20149466-info-disc(100867) https://exchange.xforce.ibmcloud.com/vulnerabilities/100867
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.