MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun cobalt raq 2 |
||
sun cobalt raq 3i |
||
sun cobalt raq 4 |