PT-2004-3574 · Intersystems · Intersystems Cache

Published

2004-12-31

Updated

2008-09-05

CVE-2004-2684

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions InterSystems Cache version 5.0

Description The issue allows attackers to access certain files on a server, including cache.key and cache.dat, related to .csp files under Devstudiotemplates and Dev:userstudiotemplates.

Recommendations For InterSystems Cache version 5.0, restrict access to the .csp files under the Devstudiotemplates and Dev:userstudiotemplates directories to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-2684

Affected Products

Intersystems Cache

PT-2004-3574 · Intersystems · Intersystems Cache

CVE-2004-2684

Related Identifiers

Affected Products

References · 3