3 matches found
Arbitrary file deletion
mkmailpost in newsgate 1.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mmp temporary file...
CVE-2008-4975
mkmailpost in newsgate 1.6 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mmp temporary file...
CVE-2008-4975
The CVE-2008-4975 entry concerns mkmailpost in newsgate 1.6, where a symlink attack on a /tmp/mmp##### temporary file allows local users to overwrite arbitrary files. The root cause is a symlink-based file overwrite vulnerability in the mkmailpost routine, enabling local privilege impact (complet...