Description
htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack.
Remediation
References
Related Vulnerabilities
MySQL CVE-2014-6551 Vulnerability (CVE-2014-6551)
Squid Out-of-bounds Write Vulnerability (CVE-2019-12521)
Moodle Other Vulnerability (CVE-2006-5219)
Ruby on Rails Deserialization of Untrusted Data Vulnerability (CVE-2020-8165)
TYPO3 Files or Directories Accessible to External Parties Vulnerability (CVE-2021-21355)