1 results (0.004 seconds)

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

pithos before 0.3.5 allows overwrite of arbitrary files via symlinks. pithos versiones anteriores a la versión 0.3.5, permite sobrescribir archivos arbitrarios por medio de enlaces simbólicos. • https://access.redhat.com/security/cve/cve-2010-4817 https://bugs.launchpad.net/pithos/%2Bbug/667896 https://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-4817.html https://security-tracker.debian.org/tracker/CVE-2010-4817 https://www.openwall.com/lists/oss-security/2011/08/19/10 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •