SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  ownCloud Authentication Bypass Using pre-signed URL Informational

Category: INFO      

An issue was discovered in ownCloud owncloud/core before 10.13.1. An attacker can access, modify, or delete any file without authentication if the username of a victim is known, and the victim has no signing-key configured. Hit to this signature may indicate a possible attempt to access ownCloud instance, using pre-signed URL, by exploiting this vulnerability. If no signing-key is configured in ownCloud or access using pre-signed URL is unexpected then consider blocking this signature. This signature is a supporting signature for 4191 and 4193

References
http://en.wikipedia.org/wiki/Arbitrary_code_execution


Relevant Information