eGroupWare wz_tooltips library unspecified

egroupware-wztooltips-unspecified (34913) The risk level is classified as LowLow Risk

Description:

eGroupWare is vulnerable to an unspecified vulnerability in the wz_tooltips library, which has an unknown impact and attack vector.

Platforms Affected:

  • eGroupWare, eGroupWare 1.2.106-2 and prior

Remedy:

Upgrade to the latest version of eGroupWare (1.4.001 or later), available from SourceForge.net: Files. See References.

Consequences:

Other

References:

  • SourceForge.net: Files, eGroupWare: Enterprise Collaboration - File Release Notes and Changelog - Release Name: eGroupWare 1.4.001 at http://sourceforge.net/project/shownotes.php?group_id=78745&release_id=513311.
  • BID-24378: EGroupWare WZ_ToolTips ADODB Multiple Unspecified Vulnerabilities
  • CVE-2007-3154: Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and other packages, has unknown impact and remote attack vectors.
  • SA25454: eGroupWare wz_tooltips and ADOdb Unspecified Vulnerabilities

Reported:

Jun 04, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page