CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0498
https://notcve.org/view.php?id=CVE-2003-0498
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges. Cach? Database 5.x instala el directorio /cachesys/csp con permisos inseguros, lo que permite que usuarios locales ejecuten código arbitrario añadiendo scripts del lado del servidor que se ejecutan con privilegios root. • http://www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=7 https://www.intersystems.com/support-learning/support/product-news-alerts/support-alerts-2003 • CWE-94: Improper Control of Generation of Code ('Code Injection') •