Phase:PowerChute plus 5.0.2 creates a "Pwrchute" directory during installation that is shared and world writeable, which could allow remote attackers to modify or create files in that directory.
ReferencesBUGTRAQ:Thursday, June 20, 2002 bugtraq@security.nnov.ru list issues | URL:http://online.securityfocus.com/archive/1/277930 | MISC:http://www.security.nnov.ru/news2064.html | BID:5069 | URL:http://www.securityfocus.com/bid/5069 | XF:powerchute-dir-wo
Votes:Assigned (Wednesday, June 29, 2005)
Comments:None (candidate not yet proposed)
F7: