Vulnerability Details CVE-2009-4824
Unspecified vulnerability in Kolab Webclient before 1.2.0 in Kolab Server before 2.2.3 allows attackers to have an unspecified impact via vectors related to an "image upload form."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://files.kolab.org/server/release/kolab-server-2.2.3/sources/release-notes.txt
- http://osvdb.org/61301
- http://secunia.com/advisories/37918
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:108
- http://www.securityfocus.com/bid/37465
- http://www.vupen.com/english/advisories/2010/1245
- http://files.kolab.org/server/release/kolab-server-2.2.3/sources/release-notes.txt
- http://osvdb.org/61301
- http://secunia.com/advisories/37918
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:108
- http://www.securityfocus.com/bid/37465
- http://www.vupen.com/english/advisories/2010/1245
Products affected by CVE-2009-4824
-
cpe:2.3:a:kolab:kolab_server:*
-
cpe:2.3:a:kolab:kolab_server:2.1.0
-
cpe:2.3:a:kolab:kolab_server:2.2
-
cpe:2.3:a:kolab:kolab_server:2.2.0
-
cpe:2.3:a:kolab:kolab_server:2.2.1