CVE-2008-5150

2008-11-1815:00:00

mitre

www.cve.org

AI Score

6.3

Confidence

High

EPSS

Percentile

5.1%

JSON

sample.sh in maildirsync 1.1 allows local users to append data to arbitrary files via a symlink attack on a /tmp/maildirsync-*.#####.log temporary file.

References

lists.debian.org/debian-devel/2008/08/msg00347.html

uvw.ru/report.sid.txt

www.securityfocus.com/bid/32403

exchange.xforce.ibmcloud.com/vulnerabilities/46711