vendor:
PHP Fuzzer Framework
by:
SecurityFocus
7.2
CVSS
HIGH
Insecure File Creation
377
CWE
Product Name: PHP Fuzzer Framework
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2010
PHP Fuzzer Framework creates temporary files in an insecure manner
An attacker with local access could potentially exploit this issue to overwrite and execute arbitrary code with the privileges of the victim user. Successfully exploiting this issue may compromise the affected application and possibly the computer.
Mitigation:
Ensure that temporary files are created securely and with the appropriate permissions.