CVE-2008-4995

Publication date

2008-11-07 19:00:00

Family

mitre

State

PUBLISHED

Description

redirect.pl in bk2site 1.1.9 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/redirect.log temporary file. NOTE: this vulnerability is only limited to debug mode, which is disabled by default.