CVE-2008-5313

2008-12-0317:30:00

CWE-59

[email protected]

web.nvd.nist.gov

cve-2008-5313

mailscanner

symlink attack

file overwrite

nvd

security vulnerability

4.5 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) avast-autoupdate, and (4) f-prot-6-autoupdate scripts in /etc/MailScanner/autoupdate/; the (5) bitdefender-wrapper, (6) kaspersky-wrapper, (7) clamav-wrapper, and (8) rav-wrapper scripts in /etc/MailScanner/wrapper/; the (9) Quarantine.pm, (10) TNEF.pm, (11) MessageBatch.pm, (12) WorkArea.pm, and (13) SA.pm scripts in /usr/share/MailScanner/MailScanner/; (14) /usr/sbin/MailScanner; and (15) scripts that load the /etc/MailScanner/mailscanner.conf.with.mcp configuration file.

CPENameOperatorVersion
mailscanner:mailscannermailscannereq4.73.4-2
mailscanner:mailscannermailscannereq4.70.7-1
mailscanner:mailscannermailscannereq4.68.8-1
mailscanner:mailscannermailscannereq4.72.5-1
mailscanner:mailscannermailscannereq4.68.8
mailscanner:mailscannermailscannereq4.69.9-3
mailscanner:mailscannermailscannereq4.71.10-1

CPE	Name	Operator	Version
mailscanner:mailscanner	mailscanner	eq	4.73.4-2
mailscanner:mailscanner	mailscanner	eq	4.70.7-1
mailscanner:mailscanner	mailscanner	eq	4.68.8-1
mailscanner:mailscanner	mailscanner	eq	4.72.5-1
mailscanner:mailscanner	mailscanner	eq	4.68.8
mailscanner:mailscanner	mailscanner	eq	4.69.9-3
mailscanner:mailscanner	mailscanner	eq	4.71.10-1