Description

The FTP backend in user_external in ownCloud Server before 5.0.18 and 6.x before 6.0.6 allows remote attackers to bypass intended authentication requirements via a crafted password.

Remediation

References

CVE-2014-9045

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-1999-1053)

WordPress Plugin WP Post Popup Directory Traversal (2.0)

WordPress Plugin Spiffy XSPF Player SQL Injection (0.1)

PHP Resource Management Errors Vulnerability (CVE-2014-3538)

WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.16)

Severity

Medium

Classification

CVE-2014-9045 CWE-287

Tags

Missing Update Known Vulnerabilities