Back to search
CVE-2004-2577
Published: Nov 28, 2005
Modified: Sep 16, 2024
PUBLISHED
Description
The acl_check function in phpGroupWare 0.9.16RC2 always returns True, even when mkdir does not behave as expected, which could allow remote attackers to obtain sensitive information via WebDAV from users' home directories that lack .htaccess files, and possibly has other unknown impacts.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
7618
vdb-entry
x_refsource_OSVDB
12237
vdb-entry
x_refsource_BID
https://savannah.gnu.org/bugs/?func=detailitem&item_id=7227
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now