Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-3691
HistoryOct 07, 2010 - 12:00 a.m.

CVE-2010-3691

2010-10-0700:00:00
ubuntu.com
ubuntu.com
8

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

10.1%

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled,
allows local users to overwrite arbitrary files via a symlink attack on an
unspecified file.

Notes

Author Note
sbeattie fix in php-cas 1.1.3

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

10.1%