[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3363-1 owncloud-client -- owncloud-client

ID: oval:org.secpod.oval:def:602234Date: (C)2015-09-23   (M)2021-09-13
Class: PATCHFamily: unix




Johannes Kliemann discovered a vulnerability in ownCloud Desktop Client, the client-side of the ownCloud file sharing services. The vulnerability allows man-in-the-middle attacks in situations where the server is using self-signed certificates and the connection is already established. If the user in the client side manually distrusts the new certificate, the file syncing will continue using the malicious server as valid.

Platform:
Debian 8.x
Product:
owncloud-client
Reference:
DSA-3363-1
CVE-2015-4456
CVE    1
CVE-2015-4456
CPE    2
cpe:/a:owncloud:owncloud-client
cpe:/o:debian:debian_linux:8.x

© SecPod Technologies