oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Re: CVE for ISPConfig 3.0.4.3 "Add new Webdav user" can chmod and chown entire server from client interface

From: Kurt Seifried <kseifried () redhat com>
Date: Mon, 09 Apr 2012 11:20:10 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 04/09/2012 04:42 AM, ISPConfig.org - Till Brehm wrote:

The contact info of the ispconfig project can be found here:

http://www.ispconfig.org/imprint/


Is there a security contact and PGP key for reporting serious issues?
I was unable to find any security contact information on the website
as previously stated.


Till Brehm ISPConfig.org




- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJPgxpKAAoJEBYNRVNeJnmTSRkQAIVt1SobM5opIkCplNfQO339
fKm/v3H6iBKBvrYxmEWRILOAjZzowcdTcwP+wk5/KfE4v0zYt+qtBewPYffK8mfx
eG72HiNZBX4ymzSc2nER5yFafS4BBNo60NoaB5Vma7uGYubSl8HWWqvbHndq7+ZQ
razzFpQ+267bzpPHYgAEEwLbQjDmqpcYoCddIkilCJCXDe8N2g9fJRyZKeWz4Q5q
xtW+sLBVqHt1Lr9ENupcIOWZHk11zGF6igIChpf7ohNEhwxFWdMyKG0Wz7EoirsC
lGYn96y8M5bsptvsTw2N+LzbsvKFYcPRbf9jyJX/wT18RJ47yS9QgZxwl3O2bVKi
K3FNF1N3k6yszhCdH9YIaeaaqgxe+1nxVDxavUJfIISwnCVYNV0DgJ/LyEfoovxW
wicZuRADTtOM704xhdm7pJ24xsB55asa7CtWBcPto3rVIPOvvYPrduVxawGkpr8s
M0qsnrwsDvqpADFLUcIyeRTPMZU5PNLEccRvSVGuxhlFcSur8YGuyGjBBp7RoBww
UAiChQSGhsKu3zgWQYTtqYYSuvO2Cz4hfpZgVBdvYFTqI3PmQRjh02Y2kINN2/ZV
F4N2bymMaJNErsdM+9TjEkdpVR7L6ZMCkFkLwXqR+22ZFsNlW4huKR2jpJgx2+/u
SGzdscWECzrDY3KqNCpL
=fKsP
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: