Arbitrary SMB Command Execution in ownCloud Server

Arbitrary SMB Command Execution in ownCloud Server

CVE-2015-4718 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

Learn more about our Cis Benchmark Audit For Server Software.