CVE-2008-4995 in bk2siteinfo

Summary

redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, which is disabled by default.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

11/07/2008

Disclosure

11/07/2008

Moderation

VulDB entry created

Entries

1: VDB-44933

CPE

ready

CWE

CWE-59 (Confirmed)

CVSS

8.4

EPSS

0.00025

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4995
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4995
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4995/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!