CVE-2014-1631

source: wwwsecurityfocuscom/bid/65186/info Eventum is prone to an insecure file-permission vulnerability An attacker can exploit this issue to reinstall vulnerable application This may aid in further attacks Eventum 234 is vulnerable; other versions may also be affected Following example URI is available wwwexamplecom ...

Advisory ID: HTB23198 Product: Eventum Vendor: Eventum Development Team Vulnerable Version(s): 234 and probably prior Tested Version: 234 Advisory Publication: January 22, 2014 [without technical details] Vendor Notification: January 22, 2014 Vendor Patch: January 24, 2014 Public Disclosure: January 27, 2014 Vulnerability Type: Incorrect D ...

Eventum version 234 suffers from incorrect default permission and code injection vulnerabilities ...