O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=96715834610888&w=2 | |
http://www.securityfocus.com/bid/1611 | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2000-10-20 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2000-0769
Mitre link : CVE-2000-0769
CVE.ORG link : CVE-2000-0769
JSON object : View
Products Affected
oreilly
- website_pro
CWE