Plone vulnerability (privilege escalation)
We have become aware of a problem related to Plone and its security system, which is posted here:http://plone.org/products/plone/security/advisories/cve-2011...
We are considering options and working towards a safe solutions for all our customers, primarily those who have paid support or other security update agreements, and then those who do not.
We think disabling logins is the right way to go about it, but we will discuss this internally, make some decisions and then see what we will do about the problem.
[Permalink] [By morphex] [Zope instance management (Atom feed)] [2011 02 Feb 06:44 GMT+2]