Insecure Permissions in ScriptLogic 4.01 and Earlier: Log Modification and Code Execution Vulnerability

Insecure Permissions in ScriptLogic 4.01 and Earlier: Log Modification and Code Execution Vulnerability

CVE-2003-1122 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

ScriptLogic 4.01, and possibly other versions before 4.14, uses insecure permissions for the LOGS$ share, which allows users to modify log records and possibly execute arbitrary code.

Learn more about our User Device Pen Test.