Vulnerability Name: | CVE-2004-0698 (CCN-16689) | ||||||||
Assigned: | 2004-07-13 | ||||||||
Published: | 2004-07-13 | ||||||||
Updated: | 2017-07-11 | ||||||||
Summary: | 4D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack. | ||||||||
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
| ||||||||
CVSS v2 Severity: | 3.6 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | File Manipulation | ||||||||
References: | Source: MISC Type: UNKNOWN ftp://ftp.4d.com/ACI_PRODUCT_REFERENCE_LIBRARY/4D_PRODUCT_DOCUMENTATION/PDF_Docs_by_4D_Product_A-Z/4D_WebSTAR/Software_Change_History.txt Source: MITRE Type: CNA CVE-2004-0698 Source: ATSTAKE Type: Vendor Advisory A071304-1 Source: CCN Type: Kerio Technologies WebSTAR Download Source: CCN Type: OSVDB ID: 7797 4D WebSTAR Symlink Local Privilege Escalation Source: CCN Type: BID-10714 4D WebStar Symbolic Link Vulnerability Source: CCN Type: BID-10720 4D WebStar Remote FTP Buffer Overflow Vulnerability Source: CCN Type: @stake, Inc. Security Advisory 07/13/2004 WebSTAR 5.3.2 Multiple Vulnerabilities Source: XF Type: UNKNOWN 4dwebstar-symlink(16689) Source: XF Type: UNKNOWN 4dwebstar-symlink(16689) | ||||||||
Vulnerable Configuration: | Configuration 1:![]() | ||||||||
BACK |