Low
CVSS 2.1
Overview
aStats 1.6.5 allows local users to overwrite arbitrary files via a symlink attack on (1) the aStats-Graphic-Signature-Generation file and (2) certain PNG image files.
CVE-2004-2605
aStats 1.6.5 allows local users to overwrite arbitrary files via a symlink attac...
Risk analysis
This vulnerability is rated 🟢 LOW.
- CVSS: 2.1 (LOW)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.