CVE-2000-0431 - CVE Details

Description

Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

sun - cobalt_raq_2

Affected Versions:

sun - cobalt_raq_3i

Affected Versions:

References

http://archives.neohapsis.com/archives/bugtraq/2000-05/0305.html
http://www.osvdb.org/1346
http://www.securityfocus.com/bid/1238
PatchVendor Advisory
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000523100045.B11049%40HiWAAY.net
http://archives.neohapsis.com/archives/bugtraq/2000-05/0305.html
http://www.osvdb.org/1346
http://www.securityfocus.com/bid/1238
PatchVendor Advisory
http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000523100045.B11049%40HiWAAY.net