PT-2001-1373 · Internetnews · Inn

Published

2001-03-12

Updated

2017-10-10

CVE-2001-0139

CVSS v2.0

1.2

Low

Vector

AV:L/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: inn version 2.2.3

Description: The issue allows local users to overwrite arbitrary files via a symlink attack in some configurations.

Recommendations: For version 2.2.3, consider restricting file access permissions to prevent arbitrary file overwrites until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2001-0139

Inn