eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftp_tmp directory, which allows local users to delete or overwrite arbitrary files.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:L/Au:N/C:N/I:P/A:P
Vendors Products
Extplorer
  • Extplorer

Configuration 1 [-]

cpe:2.3:a:extplorer:extplorer:2.1.0:b6:*:*:*:*:*:*
References
Link Resource
http://www.openwall.com/lists/oss-security/2012/08/03/7
http://www.securityfocus.com/bid/54801
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2022-10-03T16:15:24

Updated: 2022-10-03T16:15:24

Reserved: 2022-10-03T00:00:00

Link: CVE-2012-3454

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2012-08-07T20:55:04.203

Modified: 2012-08-08T15:21:09.703

Link: CVE-2012-3454

JSON object: View

cve-icon Redhat Information

No data.

CWE