FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

egroupware -- arbitrary file download in JiNN

Affected packages
eGroupWare < 1.0.0.006

Details

VuXML ID 39953788-6bbb-11d9-8bc9-000a95bc6fae
Discovery 2004-10-15
Entry 2005-01-21

eGroupWare contains a bug in the JiNN component that allows a remote attacker to download arbitrary files.

References

Message http://sourceforge.net/mailarchive/forum.php?thread_id=5915445&forum_id=35178
URL http://cvs.sourceforge.net/viewcvs.py/egroupware/jinn/CHANGELOG#rev1.24

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.