Description

The check_forensic script in apache-utils package 1.3.31 allows local users to overwrite or create arbitrary files via a symlink attack on temporary files.

Remediation

References

CVE-2004-1387

Related Vulnerabilities

OpenSSL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2019-1559)

Drupal Core 8.9.x Multiple Security Bypass Vulnerabilities (8.9.0 - 8.9.18)

CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-27193)

WordPress Plugin Cart66 Lite::WordPress Ecommerce Multiple Vulnerabilities (1.5.3)

WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.0.3)

Severity

Low

Classification

CVE-2004-1387

Tags

Missing Update Known Vulnerabilities