The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary files via an unspecified symlink attack.
CPE | Name | Operator | Version |
---|---|---|---|
commons_fileupload | eq | 1.2.2 | |
commons_fileupload | eq | 1.2 | |
commons_fileupload | eq | 1.1 | |
commons_fileupload | eq | 1.1.1 | |
commons_fileupload | eq | 1.2.1 | |
commons_fileupload | eq | 1.0 |