CVE-1999-1530

Currently unrated

Key Information:

Vendor: Oracle
Status: Cobalt Raq 3i; Cobalt Raq 2
Vendor: CVE Published:; 8 November 1999

Summary

cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same system.

References

http://www.securityfocus.com/bid/777

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/7764.php

vdb-entryx_refsource_XF

http://www.osvdb.org/35

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability Reserved
Aug 31, 2001
Vulnerability published
Nov 8, 1999