37 matches found
CVE-2022-48521
An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...
CVE-2022-48521
An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...
SUSE CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
OpenDKIM Elevation of Privilege Vulnerability
Opendkim is a C-based software for DKIM sender authentication system organized by Opendkim. An elevation of privilege vulnerability exists in OpenDKIM version 2.10.3 and prior versions, which stems from a failure of a properly programmed call to a high-level local procedure, whereby a local user...
CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
DEBIAN-CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
UBUNTU-CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
CVE-2020-35766
The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file related to t-testdata.h, t-setup.c, and t-cleanup.c. NOTE: this is applicable to persons who choose to engage in the "A number of self-test programs a...
CVE-2020-35766
The CVE-2020-35766 entry concerns OpenDKIM/libopendkim up to version 2.10.3. The vulnerability arises from a symlink attack against /tmp/testkeys during the unit-test test suite (t-testdata.h, t-setup.c, t-cleanup.c), enabling local privilege escalation. No explicit exploit details or in-the-wild...
OpenDKIM 后置链接漏洞
Opendkim is a C-based software for DKIM sender authentication system organized by Opendkim. An elevation of privilege vulnerability exists in OpenDKIM version 2.10.3 and prior versions, which stems from a failure of a properly programmed call to a high-level local procedure, whereby a local user...
GLSA-201904-22 : OpenDKIM: Root privilege escalation
The remote host is affected by the vulnerability described in GLSA-201904-22 OpenDKIM: Root privilege escalation It was discovered that Gentoos OpenDKIM ebuild does not properly set permissions or place the pid file in a safe directory. Impact : A local attacker could escalate privileges...
OpenDKIM: Root privilege escalation
Background A community effort to develop and maintain a C library for producing DKIM-aware applications and an open source milter for providing DKIM service. Description It was discovered that Gentoo’s OpenDKIM ebuild does not properly set permissions or place the pid file in a safe directory...
FreeBSD Ports: opendkim
The remote host is missing an update to the system as announced in the referenced advisory. VID a537b449-2b19-11e2-b339-90e6ba652cce OpenVAS Vulnerability Test $ Description: Auto generated from VID a537b449-2b19-11e2-b339-90e6ba652cce Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
FreeBSD Ports: opendkim
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...