This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Zarafa First view 2015-06-09
Product Zarafa Collaboration Platform Last view 2016-01-11
Version 7.1.12 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:zarafa:zarafa_collaboration_platform

Activity : Overall

Related : CVE

  Date Alert Description
8.4 2016-01-11 CVE-2015-6566

zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.

6.6 2015-06-09 CVE-2015-3436

provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) before 7.1.13 and 7.2.x before 7.2.1 allows local users to write to arbitrary files via a symlink attack on /tmp/zarafa-upgrade-lock.

CWE : Common Weakness Enumeration

%idName
100% (2) CWE-59 Improper Link Resolution Before File Access ('Link Following')

Nessus® Vulnerability Scanner

id Description
2016-03-04 Name: The remote Fedora host is missing a security update.
File: fedora_2015-a275fd68f2.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Fedora host is missing a security update.
File: fedora_2015-8479.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Fedora host is missing a security update.
File: fedora_2015-8487.nasl - Type: ACT_GATHER_INFO