CVE-2014-3963 Information

Description

ownCloud Server before 6.0.1 does not properly check permissions which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.

Reference

http://owncloud.org/about/security/advisories/oC-SA-2014-009/