Skip to main content

CVE-2005-1915

Severity Low
Score 2.1/10

Summary

The log4sh_readProperties function in log4sh 1.2.5 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable log4sh.$$ filenames.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • NONE

References

Advisory Timeline

  • Published