CVE-2005-1915

Publication date

2005-09-02 04:00:00

Family

redhat

State

PUBLISHED

Description

The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames.