Vulnerability CVE-2015-6566


Published: 2016-01-11

Description:
zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.

Vendor: Zarafa
Product: Zarafa collaboration platform 
Version: 7.2.0;
Vendor: Fedoraproject
Product: Fedora 
Version: 21;

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
https://jira.zarafa.com/browse/ZCP-13572
https://jira.zarafa.com/browse/ZCP-13533
https://download.zarafa.com/community/final/7.2/final-changelog-7.2.txt
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172605.html

Related CVE
CVE-2012-1170
Moodle before 2.2.2 has an external enrolment plugin context check issue where capability checks are not thorough
CVE-2012-1161
Moodle before 2.2.2: Course information leak via hidden courses being displayed in tag search results
CVE-2012-1159
Moodle before 2.2.2: Overview report allows users to see hidden courses
CVE-2010-4177
mysql-gui-tools (mysql-query-browser and mysql-admin) before 5.0r14+openSUSE-2.3 exposes the password of a user connected to the MySQL server in clear text form via the list of running processes.
CVE-2010-3439
It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command.
CVE-2010-3438
libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbitrary IRC commands by passing an argument such as "some text\rQUIT" to the 'privmsg' handler, which would cause the client to disc...
CVE-2019-14824
A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.
CVE-2019-10222
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denia...

Copyright 2019, cxsecurity.com

 

Back to Top