Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2008-4977
HistoryNov 06, 2008 - 11:00 a.m.

CVE-2008-4977

2008-11-0611:00:00
mitre
www.cve.org
1
postfix vulnerability
local users
symlink attack
arbitrary files
vendor dispute

AI Score

6.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON

postfix_groups.pl in Postfix 2.5.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/postfix_groups.stdout, (2) /tmp/postfix_groups.stderr, and (3) /tmp/postfix_groups.message temporary files. NOTE: the vendor disputes this vulnerability, stating "This is not a real issue … users would have to edit a script under /usr/lib to enable it.

Related

redhatcve 1
cve 1
prion 1
ubuntucve 1
nvd 1
redhatcve
redhatcve
CVE-2008-4977
2015-10-30 10:03:30
cve
cve
CVE-2008-4977
2008-11-06 15:55:52
prion
prion
Design/Logic Flaw
2008-11-06 15:55:00
ubuntucve
ubuntucve
CVE-2008-4977
2008-11-06 00:00:00
nvd
nvd
CVE-2008-4977
2008-11-06 15:55:52

AI Score

6.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2008-4977
redhatcve1cve1prion1ubuntucve1nvd1