USN-65-1: Apache utility script vulnerability
20 January 2005
Apache utility script vulnerability
Releases
Details
Javier Fernández-Sanguino Peña noticed that the "check_forensic"
script created temporary files in an insecure manner. This could
allow a symbolic link attack to create or overwrite arbitrary files
with the privileges of the user invoking the program.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 4.10
-
apache-utils
-
In general, a standard system update will make all the necessary changes.