CVE-2000-0431

Currently unrated

Key Information:

Vendor: Oracle
Status: Cobalt Raq 3i; Cobalt Raq 2
Vendor: CVE Published:; 22 May 2000

Summary

Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files.

References

http://www.securityfocus.com/templates/archive.pike?list=...

mailing-listx_refsource_BUGTRAQ

http://archives.neohapsis.com/archives/bugtraq/2000-05/03...

x_refsource_CONFIRM

http://www.osvdb.org/1346

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability Reserved
Jun 14, 2000
Vulnerability published
May 22, 2000