Project

General

Profile

Bug #1799

[v2.6] Vulnerability in owncloud allows cross-site scripting (XSS) and privilege escalation

Added by Leonardo Arena about 6 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
Start date:
04/21/2013
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

  1. XSS vulnerability in MediaElement.js (oC-SA-2013-017)
    Web: https://owncloud.org/about/security/advisories/oC-SA-2013-017/
  1. CVE IDENTIFIERS
    - CVE-2013-1967 (MediaElement.js)
  1. AFFECTED SOFTWARE
    - ownCloud Server < 5.0.5
    - ownCloud Server < 4.5.10
  1. RISK
    - High
  1. COMMITS
    - b13c31b (stable5)
    - 239ec01 (stable45)
  1. DESCRIPTION
    A cross-site scripting (XSS) vulnerability in all ownCloud versions
    prior to 5.0.5 and 4.5.10 except the 4.0.x branch allows remote attackers to
    execute arbitrary javascript when a user opens a special crafted URL.

This vulnerability exists in the bundled 3rdparty plugin
“MediaElement.js”, “MediaElement.js” released version 2.11.2 which
addresses the problem.

  1. CREDITS
    The ownCloud Team would like to thank Malte Batram (batr.am) for
    discovering this vulnerability and responsibly disclosing this to us
    and upstream.
  1. RESOLUTION
    Update to ownCloud Server 5.0.5 or 4.5.10
    http://download.owncloud.org/community/owncloud-5.0.5.tar.bz2
    http://download.owncloud.org/community/owncloud-4.5.10.tar.bz2

  1. Privilege escalation in the contacts application (oC-SA-2013-018)
    Web: https://owncloud.org/about/security/advisories/oC-SA-2013-018/
  1. CVE IDENTIFIERS
    - CVE-2013-1963
  1. AFFECTED SOFTWARE
    - ownCloud Server < 5.0.5
    - ownCloud Server < 4.5.10
  1. RISK
    - High
  1. COMMITS
    - 9cc35e4 (stable5)
    - fc4632d (stable45)
  1. DESCRIPTION

Due to not properly checking the ownership of a single contact, an
authenticated attacker is able to download contacts of other users in
all ownCloud versions prior to 5.0.5 including the 4.5.x branch.

Note: Successful exploitation of this privilege escalation requires
the “contacts” app to be enabled (enabled by default).

  1. RESOLUTION
    Update to ownCloud Server 5.0.5 ir 4.5.10
    http://download.owncloud.org/community/owncloud-5.0.5.tar.bz2
    http://download.owncloud.org/community/owncloud-4.5.10.tar.bz2

Subtasks

Bug #1800: [v2.5] Vulnerability in owncloud allows cross-site scripting (XSS) and privilege escalationClosed

Associated revisions

Revision 4d8c2301 (diff)
Added by Leonardo Arena about 6 years ago

main/owncloud: upgrade to 5.0.5. Fixes #1799

History

#1 Updated by Anonymous about 6 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Natanael Copa about 6 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF