Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-5298HistoryOct 16, 2006 - 7:07 p.m.
CVE-2006-5298
2006-10-1619:07:00
Debian Security Bug Tracker
security-tracker.debian.org
8
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.3%
The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mutt | < 1.5.13-1.1 | mutt_1.5.13-1.1_all.deb |
| Debian | 11 | all | mutt | < 1.5.13-1.1 | mutt_1.5.13-1.1_all.deb |
| Debian | 10 | all | mutt | < 1.5.13-1.1 | mutt_1.5.13-1.1_all.deb |
| Debian | 999 | all | mutt | < 1.5.13-1.1 | mutt_1.5.13-1.1_all.deb |
| Debian | 13 | all | mutt | < 1.5.13-1.1 | mutt_1.5.13-1.1_all.deb |
Related
cve
cve
CVE-2006-5298
2006-10-16 19:07:00
ubuntucve
ubuntucve
CVE-2006-5298
2006-10-16 00:00:00
nessus
nessus
Ubuntu 5.10 / 6.06 LTS / 6.10 : mutt vulnerabilities (USN-373-1)
2007-11-10 00:00:00
Mandrake Linux Security Advisory : mutt (MDKSA-2006:190)
2007-02-18 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-373-1)
2022-08-26 00:00:00
ubuntu
ubuntu
mutt vulnerabilities
2006-11-01 00:00:00
1.2 Low
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.3%
Related for DEBIANCVE:CVE-2006-5298