Description: Maarten Verbeek has reported a vulnerability in Blackboard, which can be exploited by malicious users to download other users' files in their dropbox.
The problem is that files in dropboxes are stored insecurely on the server in predictable locations.
Successful exploitation requires that a valid file name is known or can be guessed.
Solution: Use another product.
Provided and/or discovered by: Maarten Verbeek
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
