Kaspersky LabKLA10419KLA10419 WLF vulnerability in getmail
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Unspecified vulnerabilities were found in getmail. By exploiting these vulnerabilities malicious users can overwrite arbitrary files in arbitrary directories. These vulnerabilities can be exploited locally via a symlink attack.
Original advisories
Related products
CVE list
CVE-2004-0881 warning
Solution
Update to latest version
Impacts
- WLF
Write Local Files. Exploitation of vulnerabilities with this impact can lead to writing into some inaccessible files. Files that can be read depends on concrete program errors.
Affected Products
- Getmail 4 versions earlier than 4.2.0
Related
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%