858 matches found
SLES10: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at http://download.novell.com/patch/finder/ VID...
SLES10: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at http://download.novell.com/patch/finder/ VID...
SLES10: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText: 2009...
SLES10: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText: 2009...
SLES9: Security update for postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for keyword 5017839 within the SuSE Enterprise Server 9 patch database at...
SLES9: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5032740 within the SuS...
SLES9: Security update for postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix More details may also be found by searching for keyword 5017839 within the SuSE Enterprise Server 9 patch database linked in the references...
SLES9: Security update for Postfix
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postfix For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5032740 within the SuS...
Debian和Ubuntu Postfix不安全临时文件建立漏洞
Bugraq ID: 36469 CVE ID:CVE-2009-2939 Postfix是一款开放源代码的邮件传输代理,运行在不同类型的UNIX系统上。 Debian和Ubuntu包含的Postfix不安全建立临时文件,本地攻击者可以利用漏洞以应用程序权限覆盖任意文件。 Wietse Venema发现Debian和Ubuntu把/var/spool/postfix/pid的权限设置为postfix:root 0755,这允许postfix用户操作pid文件并通过符号链接攻击覆盖任意文件。 Wietse Venema Postfix 2.5.5 Ubuntu Ubuntu Linux...
SuSE9 Security Update : Postfix (YOU Patch Number 12219)
A local privilege escalation vulnerability as well as a mailbox ownership problem has been fixed in postfix. CVE-2008-2936 and CVE-2008-2937 have been assigned to this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
Code injection
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
DEBIAN-CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
CVE-2009-2939
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink attacks that overwrite arbitrary files...
Mandrake Security Advisory MDVSA-2009:224 (postfix)
The remote host is missing an update to postfix announced via advisory MDVSA-2009:224. OpenVAS Vulnerability Test $Id: mdksa2009224.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:224 postfix Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
Mandrake Security Advisory MDVSA-2009:224 (postfix)
The remote host is missing an update to postfix announced via advisory MDVSA-2009:224. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Mandriva Linux Security Advisory : postfix (MDVSA-2009:224-1)
A vulnerability has been found and corrected in postfix : Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messages by creating a mailbox file corresponding to another user's...