Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0430

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2002-0430
Last Modified 10 Sep 2008 03:12:01
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2002-0430

Summary

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.

Vulnerable Systems


References

BID - 4252

BUGTRAQ - 20020308 Remote Cobalt Raq XTR vulns


Last Updated: 27 May 2016 10:36:54