CVE-2005-1915

2005-09-02T17:03:00
ID CVE-2005-1915
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:23:00

Description

The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames.