Описание
The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| owncloud | fixed | 7~20140504+dfsg-1 | package |
Примечания
Only affects 5.x and 6.x, so marking first 7 release as fixed
https://owncloud.org/security/advisory/?id=oc-sa-2014-019
Связанные уязвимости
nvd
около 11 лет назад
The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.
github
больше 3 лет назад
The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.