Summary
Detail | |||
---|---|---|---|
Vendor | Zarafa | First view | 2015-02-19 |
Product | Zarafa Collaboration Platform | Last view | 2016-01-11 |
Version | 7.0.2 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:zarafa:zarafa_collaboration_platform |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
8.4 | 2016-01-11 | CVE-2015-6566 | zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*. |
6.6 | 2015-06-09 | CVE-2015-3436 | provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) before 7.1.13 and 7.2.x before 7.2.1 allows local users to write to arbitrary files via a symlink attack on /tmp/zarafa-upgrade-lock. |
5 | 2015-02-19 | CVE-2014-9465 | senddocument.php in Zarafa WebApp before 2.0 beta 3 and WebAccess in Zarafa Collaboration Platform (ZCP) 7.x before 7.1.12 beta 1 and 7.2.x before 7.2.0 beta 1 allows remote attackers to cause a denial of service (/tmp disk consumption) by uploading a large number of files. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
66% (2) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
33% (1) | CWE-399 | Resource Management Errors |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2016-03-04 | Name: The remote Fedora host is missing a security update. File: fedora_2015-a275fd68f2.nasl - Type: ACT_GATHER_INFO |
2015-06-09 | Name: The remote Fedora host is missing a security update. File: fedora_2015-8479.nasl - Type: ACT_GATHER_INFO |
2015-06-09 | Name: The remote Fedora host is missing a security update. File: fedora_2015-8487.nasl - Type: ACT_GATHER_INFO |
2015-04-28 | Name: The remote Fedora host is missing a security update. File: fedora_2015-5823.nasl - Type: ACT_GATHER_INFO |
2015-04-28 | Name: The remote Fedora host is missing a security update. File: fedora_2015-5864.nasl - Type: ACT_GATHER_INFO |
2015-02-11 | Name: The remote Mandriva Linux host is missing one or more security updates. File: mandriva_MDVSA-2015-040.nasl - Type: ACT_GATHER_INFO |