Vulnerability Description
4D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack.
CVSS Score
3.6
LOW
AV:L/AC:L/Au:N/C:P/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 4D | Webstar | 4.0 |
References
- ftp://ftp.4d.com/ACI_PRODUCT_REFERENCE_LIBRARY/4D_PRODUCT_DOCUMENTATION/PDF_Docs
- http://www.atstake.com/research/advisories/2004/a071304-1.txtVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16689
- ftp://ftp.4d.com/ACI_PRODUCT_REFERENCE_LIBRARY/4D_PRODUCT_DOCUMENTATION/PDF_Docs
- http://www.atstake.com/research/advisories/2004/a071304-1.txtVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16689
FAQ
What is CVE-2004-0698?
CVE-2004-0698 is a vulnerability with a CVSS score of 3.6 (LOW). 4D WebSTAR 5.3.2 and earlier allows local users to read and modify arbitrary files via a symlink attack.
How severe is CVE-2004-0698?
CVE-2004-0698 has been rated LOW with a CVSS base score of 3.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0698?
Check the references section above for vendor advisories and patch information. Affected products include: 4D Webstar.