[opencms-dev] OpenCms security advisory?
Christian Steinert
christian_steinert at web.de
Fri Jul 28 16:23:44 CEST 2006
Christoph P. Kukulies schrieb:
> Do I understand it right: These vulnerabilities all require that
> the accessing client has to authorize as a workplace or web user?
>
A possible attacker would need to have a workplace user. So these are
issues, where existing users could boost their permissions.
Having a Web user would not be enough.
c.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3269 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://webmail.opencms.org/pipermail/opencms-dev/attachments/20060728/0bc8c96c/attachment.bin>
More information about the opencms-dev
mailing list