CVE-2016-9459
N/A
N/A
Summary
Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment disposition forcing the browser to download the document. However, Firefox running on Microsoft Windows would offer the user to open the data in the browser as an HTML document. Thus any injected data in the log would be executed.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Nextcloud Server & ownCloud Server Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 | Nextcloud Server & ownCloud Server Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 | affected |
Weaknesses
- CWE-209: Cross-Site Scripting Using MIME Type Mismatch (CWE-209)
ADP Enrichment
CVE Program Container
Additional References
- https://owncloud.org/security/advisory?id=oc-sa-2016-012
- https://github.com/owncloud/core/commit/b7fa2c5dc945b40bc6ed0a9a0e47c282ebf043e1
- https://github.com/owncloud/core/commit/044ee072a647636b1a17c89265c7233b35371335
- https://hackerone.com/reports/146278
- https://github.com/owncloud/core/commit/efa35d621dc7ff975468e636a5d1c153511296dc
- https://nextcloud.com/security/advisory/?id=nc-sa-2016-002
- https://github.com/nextcloud/server/commit/94975af6db1551c2d23136c2ea22866a5b416070
- http://www.securityfocus.com/bid/97284
References
- https://owncloud.org/security/advisory?id=oc-sa-2016-012
- https://github.com/owncloud/core/commit/b7fa2c5dc945b40bc6ed0a9a0e47c282ebf043e1
- https://github.com/owncloud/core/commit/044ee072a647636b1a17c89265c7233b35371335
- https://hackerone.com/reports/146278
- https://github.com/owncloud/core/commit/efa35d621dc7ff975468e636a5d1c153511296dc
- https://nextcloud.com/security/advisory/?id=nc-sa-2016-002
- https://github.com/nextcloud/server/commit/94975af6db1551c2d23136c2ea22866a5b416070
- http://www.securityfocus.com/bid/97284
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.