Security Advisory
CVE-2010-3691
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.