CVE-2010-2024

2010-06-07T17:12:00
ID CVE-2010-2024
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:58:00

Description

transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/.