Описание
Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operations.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| smarty3 | fixed | 3.0~rc1-1 | package | |
| smarty | removed | package | ||
| smarty | end-of-life | squeeze | package |
EPSS
Процентиль: 23%
0.00077
Низкий
Связанные уязвимости
ubuntu
почти 15 лет назад
Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operations.
nvd
почти 15 лет назад
Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operations.
github
больше 3 лет назад
Smarty Does Not Consider Umask Values When Setting Permissions
EPSS
Процентиль: 23%
0.00077
Низкий