Auth bypass in /lib/base.php
Platform: ownCloud Server
Risk level: High
/lib/base.php before ownCloud 4.0.8 does not properly validate the user_id session variable via WebDAV, which allows authenticated attackers to gain access to other users files.
- ownCloud Server < 4.0.8 (CVE-2012-5336)
It is recommended that all instances are upgraded to ownCloud Server 4.0.8.
The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:
- Lukas Reschke – ownCloud Inc. (firstname.lastname@example.org) – Vulnerability discovery and disclosure.