Description

htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack.

Remediation

References

CVE-2001-0131

Related Vulnerabilities

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2165)

PHP Improper Input Validation Vulnerability (CVE-2007-3799)

WordPress Plugin Google Analytics by BestWebSoft Cross-Site Scripting (1.7.0)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)

WordPress Plugin Quartz SQL Injection (1.01.1)

Severity

Low

Classification

CVE-2001-0131 CWE-59

Tags

Missing Update Known Vulnerabilities