← back
CVE-2010-2476

CVE-2010-2476

EPSS 1.7%
syscp 1.4.2.1 allows attackers to add arbitrary paths via the documentroot of a domain by appending a colon to it and setting the open basedir path to use that domain documentroot.
Affected products
syscp · syscp

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=587481https://security-tracker.debian.org/tracker/CVE-2010-2476https://www.openwall.com/lists/oss-security/2010/06/30/15