Secunia: Description: A vulnerability has been reported in eGroupWare, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an error related to FCKEditor. This can be exploited to e.g. upload malicious files and execute arbitrary PHP code, but requires that a directory is writable by the webserver. This may be related to: SA27123http://secunia.com/advisories/29790/ The vulnerability is reported in versions prior to 1.4.004. Solution: Update to version 1.4.004.
in cvs
Arches, please test and mark stable: =www-apps/egroupware-1.4.004 Target keywords : "alpha amd64 hppa ppc release x86"
amd64/x86 stable
Stable for HPPA.
alpha stable
ppc stable
Fixed in release snapshot.
GLSA request filed.
might want to include bug 214212 in the GLSA
GLSA 200805-04