Vulnerability Details CVE-2002-0430
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.7%
CVSS Severity
CVSS v2 Score 3.7
References
Products affected by CVE-2002-0430
-
cpe:2.3:h:sun:cobalt_raq_2:-
-
cpe:2.3:h:sun:cobalt_raq_3i:-
-
cpe:2.3:h:sun:cobalt_raq_4:-