CVE-2012-4392

Publication date

2012-09-05 23:00:00

Family

redhat

State

PUBLISHED

Description

index.php in ownCloud 4.0.7 does not properly validate the oc_token cookie, which allows remote attackers to bypass authentication via a crafted oc_token cookie value.