Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-1939HistoryMar 14, 2014 - 4:55 p.m.
CVE-2013-1939
2014-03-1416:55:04
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.002
Percentile
55.5%
The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | php-sabredav | < 1.8.12-10 | php-sabredav_1.8.12-10_all.deb |
| Debian | 11 | all | php-sabredav | < 1.8.12-9 | php-sabredav_1.8.12-9_all.deb |
| Debian | 999 | all | php-sabredav | < 1.8.12-10 | php-sabredav_1.8.12-10_all.deb |
Related
openvas
openvas
Fedora Update for php-sabredav-Sabre_DAV FEDORA-2013-7285
2013-05-13 00:00:00
Fedora Update for php-sabredav-Sabre_DAV FEDORA-2013-7289
2013-05-13 00:00:00
Fedora Update for php-sabredav-Sabre_DAV FEDORA-2013-7285
2013-05-13 00:00:00
prion
prion
Path traversal
2014-03-14 16:55:00
nvd
nvd
CVE-2013-1939
2014-03-14 16:55:04
owncloud
owncloud
Local file disclosure when running on Windows - ownCloud
2013-04-11 18:04:08
Server: Local file disclosure when running on Windows
2013-04-11 11:42:22
friendsofphp
friendsofphp
Local file exposure on Windows installations
2013-04-11 10:24:15
Local file exposure on Windows installations
2013-04-11 10:24:15
osv
osv
SabreDAV Directory Traversal vulnerability
2022-05-14 01:52:20
nessus
nessus
Fedora 18 : php-sabredav-Sabre_DAV-1.6.5-5.fc18 (2013-7289)
2013-05-13 00:00:00
Fedora 19 : php-sabredav-Sabre_DAV-1.6.5-5.fc19 (2013-7253)
2013-05-11 00:00:00
Fedora 17 : php-sabredav-Sabre_DAV-1.6.5-5.fc17 (2013-7285)
2013-05-13 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: php-sabredav-Sabre_DAV-1.6.5-5.fc19
2013-05-11 03:13:49
[SECURITY] Fedora 17 Update: php-sabredav-Sabre_DAV-1.6.5-5.fc17
2013-05-12 01:50:13
[SECURITY] Fedora 18 Update: php-sabredav-Sabre_DAV-1.6.5-5.fc18
2013-05-12 01:51:10
github
github
SabreDAV Directory Traversal vulnerability
2022-05-14 01:52:20
ubuntucve
ubuntucve
CVE-2013-1939
2014-03-14 00:00:00
cvelist
cvelist
CVE-2013-1939
2014-03-14 16:00:00
cve
cve
CVE-2013-1939
2014-03-14 16:55:04
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.002
Percentile
55.5%
Related for DEBIANCVE:CVE-2013-1939