[TYPO3-announce] [Ticket#2014112710000045] Improper Access Control vulnerability in extension WebDav for filemounts (webdav)

TYPO3 Security Team security at typo3.org
Thu Nov 27 10:37:34 CET 2014

Dear TYPO3 users,

an Improper Access Control vulnerability has been discovered in third party TYPO3 extension WebDav for filemounts (webdav). For further information on the issue please read the 
related advisory TYPO3-EXT-SA-2014-017 that was published today:

In general the TYPO3 Security Team recommends to read the following pages:

The TYPO3 Security Guide:

Make sure you are subscribed to the TYPO3 Announce List:

See all TYPO3 security advisories for TYPO3 third party extensions:


Marcus Krause
Member of the TYPO3 Security Team

TYPO3 Security Team homepage: http://typo3.org/teams/security/

E-Mail: security at typo3.org

Please note: When replying to this e-mail, please leave the header intact.

More information about the TYPO3-announce mailing list