CVE-2010-3691

Опубликовано: 07 окт. 2010

Источник: debian

Описание

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.

Пакеты

Пакет	Статус	Версия исправления	Тип
libphp-cas	itp		package
glpi	removed		package
moodle	fixed	1.9.9.dfsg2-2	package

Примечания

Only supported behind an authenticated HTTP zone

Связанные уязвимости

CVE-2010-3691

ubuntu

больше 15 лет назад

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.

CVE-2010-3691

nvd

больше 15 лет назад

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.

GHSA-5pj3-8xv9-ch9w

github

больше 3 лет назад

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.