Vulnerability in Sun Cobalt_raq_2

CVE-2002-0430

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.

EPSS: 0.009 (55.4th percentile) — read the EPSS interpretation.

Affected products

References