CVE-2005-0254

Name of the Vulnerable Software and Affected Versions BibORB versions 1.3.2 and earlier

Description The issue is related to the improper enforcement of a restriction for uploading only PDF and PS files. This allows remote attackers to upload arbitrary files, which are then presented to other users with PDF or PS icons. This could potentially trick some users into downloading and executing those files.

Recommendations For BibORB versions 1.3.2 and earlier, consider restricting file uploads to only PDF and PS files as a temporary workaround until a patch is available. Additionally, users should be cautious when downloading files, even if they are presented with PDF or PS icons. At the moment, there is no information about a newer version that contains a fix for this vulnerability.