NuytsTech Security

CVE-2002-0430

by ·

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.

Date published : 2002-06-11

http://www.securityfocus.com/bid/4252

http://archives.neohapsis.com/archives/bugtraq/2002-03/0081.html

Tags: