CVE-2014-9466

Name of the Vulnerable Software and Affected Versions Open-Xchange (OX) AppSuite and Server versions prior to 7.4.2-rev42 Open-Xchange (OX) AppSuite and Server version 7.6.0 prior to 7.6.0-rev36 Open-Xchange (OX) AppSuite and Server version 7.6.1 prior to 7.6.1-rev14

Description The issue is related to improper handling of directory permissions, allowing remote authenticated users to read files via unspecified vectors. This is related to the folder identifier.

Recommendations For versions prior to 7.4.2-rev42, update to version 7.4.2-rev42 or later. For version 7.6.0 prior to 7.6.0-rev36, update to version 7.6.0-rev36 or later. For version 7.6.1 prior to 7.6.1-rev14, update to version 7.6.1-rev14 or later.