Sun: >> Cobalt Raq 2 Security Vulnerabilities
cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same system.
CVSS Score
3.6
EPSS Score
0.001
Published
1999-11-08
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.
CVSS Score
10.0
EPSS Score
0.009
Published
1999-08-08
Page 2