CVE-2001-0973

BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary files by uploading and extracting a tar file with a symlink into the data-bag space.

Date published : 2002-03-09

http://www.securityfocus.com/bid/3227

http://archives.neohapsis.com/archives/bugtraq/2001-08/0328.html