CVE-2005-1367 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-1367

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Pico Server (pServ) 3.2 and earlier allows local users to read arbitrary files as the pServ user via a symlink to a file outside of the web document root.

Affected Software

Name	Vendor	Start Version	End Version
Pico_server	Pico_server	3.0 (including)	3.0 (including)
Pico_server	Pico_server	3.0_beta_3 (including)	3.0_beta_3 (including)
Pico_server	Pico_server	3.1 (including)	3.1 (including)
Pico_server	Pico_server	3.2 (including)	3.2 (including)

References

http://marc.info/?l=full-disclosure\u0026m=111625623909003\u0026w=2
http://www.redteam-pentesting.de/advisories/rt-sa-2005-012.txt