Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2009/10/19 12:0 a.m.17 views

Mandrake Security Advisory MDVSA-2009:263 (sympa)

The remote host is missing an update to sympa announced via advisory MDVSA-2009:263. OpenVAS Vulnerability Test $Id: mdksa2009263.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:263 sympa Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.9CVSS0.6AI score0.0035EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/10/19 12:0 a.m.20 views

Mandrake Security Advisory MDVSA-2009:263 (sympa)

The remote host is missing an update to sympa announced via advisory MDVSA-2009:263. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

6.9CVSS6.6AI score0.0035EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/10/11 12:0 a.m.21 views

Sympa 'sympa.pl' Insecure Temporary File Creation Vulnerability

Sympa creates temporary files in an insecure manner. An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application. Successfully mounting a symlink attack may allow the attacker to delete...

6.9CVSS0.0035EPSS
Exploits0References4
OSV
OSV
added 2008/10/07 9:11 p.m.9 views

CVE-2008-4476

sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympaaliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability...

6.1AI score
Exploits0References10
CVE
CVE
added 2008/10/07 9:0 p.m.67 views

CVE-2008-4476

Sympa vulnerability CVE-2008-4476 affects sympa.pl in sympa 5.3.4, where local users can overwrite arbitrary files via a symlink attack on the temporary file /tmp/sympa_aliases.$$. The related note states wwsympa.fcgi was reported but the issue occurred in a dead function, so it is not a vulnerab...

6.9CVSS6AI score0.0035EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder