← back
CVE-2004-1603

CVE-2004-1603

EPSS 1.6%
cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files via the backup feature or (2) chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=109811572123753&w=2http://marc.info/?l=bugtraq&m=109811654104208&w=2http://secunia.com/advisories/12865https://exchange.xforce.ibmcloud.com/vulnerabilities/17779https://exchange.xforce.ibmcloud.com/vulnerabilities/17780http://www.securityfocus.com/bid/11449http://www.securityfocus.com/bid/11455