CVE-2015-7698

Publication date 21 October 2015

Last updated 24 July 2024


Ubuntu priority

icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.

Read the notes from the security team

Status

Package Ubuntu Release Status
owncloud 15.10 wily Not in release
15.04 vivid Not in release
14.04 LTS trusty Not in release
12.04 LTS precise
Not affected
php-smb 15.10 wily
Not affected
15.04 vivid Not in release
14.04 LTS trusty Not in release
12.04 LTS precise Not in release

Notes


mdeslaur

owncloud packages in Ubuntu are now empty