2 matches found
Debian Security Advisory DSA 848-1 (masqmail)
The remote host is missing an update to masqmail announced via advisory DSA 848-1. Jens Steube discovered two vulnerabilities in masqmail, a mailer for hosts without permanent internet connection. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-2662 Wh...
CVE-2005-2663
CVE-2005-2663 affects masqmail: opening the log file allows a local attacker to overwrite arbitrary files via a symlink attack, due to masqmail not relinquishing privileges. Affected versions are pre-0.2.18. Debian/DSA references indicate fixes in masqmail 0.2.20-1sarge1 and related updates for w...