Vulnerability in Sun Cobalt_raq_2
CVE-2002-0430
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.
EPSS: 0.009 (55.4th percentile) — read the EPSS interpretation.
Affected products
- Sun Cobalt_raq_2
- Sun Cobalt_raq_3i
- Sun Cobalt_raq_4
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (Vendor Advisory, mailing-list, Exploit, x_refsource_BUGTRAQ)