CVE-2007-1178 Information

Description

WebAPP before 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration (2) Instant Messages Administration and (3) the Image Uploader which has unknown impact and attack vectors.

Reference

http://osvdb.org/33279 http://osvdb.org/33282 http://secunia.com/advisories/24080 http://www.securityfocus.com/bid/22563 http://www.vupen.com/english/advisories/2007/0604 http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250