5 matches found
Mandrake Security Advisory MDVSA-2009:263 (sympa)
The remote host is missing an update to sympa announced via advisory MDVSA-2009:263. OpenVAS Vulnerability Test $Id: mdksa2009263.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:263 sympa Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Mandrake Security Advisory MDVSA-2009:263 (sympa)
The remote host is missing an update to sympa announced via advisory MDVSA-2009:263. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Sympa 'sympa.pl' Insecure Temporary File Creation Vulnerability
Sympa creates temporary files in an insecure manner. An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application. Successfully mounting a symlink attack may allow the attacker to delete...
CVE-2008-4476
sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympaaliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability...
CVE-2008-4476
Sympa vulnerability CVE-2008-4476 affects sympa.pl in sympa 5.3.4, where local users can overwrite arbitrary files via a symlink attack on the temporary file /tmp/sympa_aliases.$$. The related note states wwsympa.fcgi was reported but the issue occurred in a dead function, so it is not a vulnerab...