Tarantella: >> Tarantella Enterprise >> 3.0 Security Vulnerabilities
The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a symlink attack on the "spinning" temporary file.
CVSS Score
1.2
EPSS Score
0.002
Published
2002-05-31
ttawebtop.cgi in Tarantella Enterprise 3.20 on SPARC Solaris and Linux, and 3.1x and 3.0x including 3.11.903, allows remote attackers to view directory contents via an empty pg parameter.
CVSS Score
5.0
EPSS Score
0.007
Published
2002-05-16
Directory traversal vulnerability in ttawebtop.cgi in Tarantella Enterprise 3.00 and 3.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the pg parameter.
CVSS Score
5.0
EPSS Score
0.043
Published
2001-12-06