HomePentest-Tools.com Logo

4D WebStar Symbolic Link Vulnerability CVE-2004-0698

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

4D WebStar is reportedly vulnerable to a local symbolic link vulnerability.

Risk description

This issue is due to a design error that causes the application to open files without properly verifying their existence or their absolute location. Successful exploitation of this issue will allow an attacker to write to arbitrary files writable by the affected application, facilitating privilege escalation.

Recommendation

Upgrade to 4D WebStar 5.3.3 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jul 27, 2004
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available