Security Advisory

CVE-2009-5054

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-02-03 16:00:00

Last updated 2024-09-17 01:35:52

Assigner mitre

State PUBLISHED

Description

Smarty before 3.0.0 beta 4 does not consider the umask value when setting the permissions of files, which might allow attackers to bypass intended access restrictions via standard filesystem operations.

← Browse all CVEs View on cve.org ↗