oss-sec mailing list archives

Re: [SECURITY] CVE-2018-1321: Remote code execution by administrators with report and template entitlements

From: Daniel Kahn Gillmor <dkg () fifthhorseman net>
Date: Fri, 23 Mar 2018 16:10:16 +0000

On Mon 2018-03-19 12:47:45 +0100, Francesco Chicchiriccò wrote:

CVE-2018-1321: Remote code execution by administrators with report and 
template entitlements


Thanks for the report!  for future reports, please put the *name* of the
project clearly in the subject line and prominently in the message body.

I had to read down into the footnotes to figure out what this report was
talking about :P

All the best,

        --dkg

Current thread:

[SECURITY] CVE-2018-1321: Remote code execution by administrators with report and template entitlements Francesco Chicchiriccò (Mar 19)
- Re: [SECURITY] CVE-2018-1321: Remote code execution by administrators with report and template entitlements Daniel Kahn Gillmor (Mar 23)