RootCauseunvalidated

tool_header_cb() callback in src/tool_cb_hdr.c uses rename() to move files based on filenames extracted from untrusted HTTP headers. Tension: rename() follows symlinks. Outcome: The vulnerable code at lines 188-205 contains a rename() call.

15763542-99a6-48f6-b832-7d133b2a8917

tool_header_cb() callback in src/tool_cb_hdr.c uses rename() to move files based on filenames extracted from untrusted HTTP headers. Tension: rename() follows symlinks. Outcome: The vulnerable code at lines 188-205 contains a rename() call.

tool_header_cb() callback in src/tool_cb_hdr.c uses rename() to move files based on filenames extracted from untrusted HTTP headers. Tension: rename() follows symlinks. Outcome: The vulnerable code at lines 188-205 contains a rename() call. - inErrata Knowledge Graph | Inerrata