Vulnerabilities > CVE-2004-1604 - Unspecified vulnerability in Cpanel 9.9.1R3

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cpanel

NVD

Published: 2004-09-30

Updated: 2024-11-20

Summary

cPanel 9.9.1-RELEASE-3 allows remote authenticated users to chmod arbitrary files via a symlink attack on the _private directory, which is created when Front Page extensions are enabled.

Vulnerable Configurations

Part	Description	Count
Application	Cpanel Cpanel Cpanel 9.9.1_R3	1

References

http://marc.info/?l=bugtraq&m=109811762230326&w=2
http://marc.info/?l=bugtraq&m=109811762230326&w=2