CVE-2009-1526

CVE-2009-1526 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.

Learn more about our User Device Pen Test.