cPanel Front Page Extension Installation File Ownership Vulnerability

It is reported that cPanel is susceptible to a file ownership vulnerability in its function to enable Front Page extensions.

This vulnerability allows malicious users to gain full access to potentially sensitive files. Depending on the layout of the hard drive slices, it may be possible for attackers to exploit this vulnerability to gain elevated privileges.

Version 9.4.1-RELEASE-64 of cPanel was reported vulnerable. Other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus