[TYPO3-announce] [Ticket#2014112710000045] Improper Access Control vulnerability in extension WebDav for filemounts (webdav)
TYPO3 Security Team
security at typo3.org
Thu Nov 27 10:37:34 CET 2014
Dear TYPO3 users,
an Improper Access Control vulnerability has been discovered in third party TYPO3 extension WebDav for filemounts (webdav). For further information on the issue please read the
related advisory TYPO3-EXT-SA-2014-017 that was published today:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-017/
In general the TYPO3 Security Team recommends to read the following pages:
The TYPO3 Security Guide:
http://docs.typo3.org/typo3cms/SecurityGuide/
Make sure you are subscribed to the TYPO3 Announce List:
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-announce
See all TYPO3 security advisories for TYPO3 third party extensions:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/
Regards,
Marcus Krause
Member of the TYPO3 Security Team
--
TYPO3 Security Team homepage: http://typo3.org/teams/security/
E-Mail: security at typo3.org
Please note: When replying to this e-mail, please leave the header intact.
More information about the TYPO3-announce
mailing list