CVE-2009-1526

2009-05-05T20:30:00
ID CVE-2009-1526
Type cve
Reporter cve@mitre.org
Modified 2010-03-29T04:00:00

Description

JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.