CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

SUSE CVE•added 2023/02/15 6:0 a.m.•3 views

SUSE CVE-2010-0825

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks...

4.4CVSS6.7AI score0.00118EPSS

Exploits0References3

Veracode•added 2020/04/10 12:56 a.m.•22 views

Information Disclosure

postfix is vulnerable to information disclosure. It was discovered that Postfix did not properly check the permissions of users' mailbox files. A local attacker able to create files in the mail spool directory could use this flaw to create mailbox files for other local users, and be able to read...

1.9CVSS1.4AI score0.00075EPSS

Exploits0References23Affected Software1

OSV•added 2010/06/07 5:12 p.m.•1 views

DEBIAN-CVE-2010-2023

transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify the stnlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user's file...

4.4CVSS6.9AI score0.0023EPSS

Exploits0References1

Debian CVE•added 2010/06/07 2:0 p.m.•27 views

CVE-2010-2023

4.4CVSS7AI score0.0023EPSS

Exploits0

UbuntuCve•added 2010/06/07 12:0 a.m.•25 views

CVE-2010-2023

4.4CVSS7AI score0.0023EPSS

Exploits0References4

Prion•added 2010/04/05 3:30 p.m.•15 views

Design/Logic Flaw

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks...

4.4CVSS6.7AI score0.00118EPSS

Exploits0References7Affected Software1

Cvelist•added 2010/04/05 3:15 p.m.•21 views

CVE-2010-0825

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks...

6.1AI score0.00118EPSS

Exploits0References7

Debian CVE•added 2010/04/05 3:15 p.m.•19 views

CVE-2010-0825

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks...

4.4CVSS5.1AI score0.00118EPSS

Exploits0

CERT•added 2007/12/14 12:0 a.m.•20 views

Shadow Utils useradd utility sets incorrect file permissions

Overview The Shadow Utilities contain a vulnerability that may result in new user mailboxes having arbitrary permissions. Description The Shadow Utilities provide tools to manage user accounts.When a new mailbox is created using the useradd utility, the open function does not receive the expected...

3.7CVSS5.6AI score0.00096EPSS

Exploits0References6