4 matches found
CVE-2017-5899
Directory traversal vulnerability in the setuid root helper binary in S-nail later S-mailx before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. dot dot in the randstr argument...
Directory traversal
Directory traversal vulnerability in the setuid root helper binary in S-nail later S-mailx before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. dot dot in the randstr argument...
CVE-2017-5899
CVE-2017-5899 affects S-nail (later S-mailx) up to version 14.8.16. The vulnerability is a directory traversal in the setuid root helper binary invoked by randstr, allowing a local attacker to write to arbitrary files and escalate to root. Public advisories (e.g., Ubuntu USN-4820-1) confirm the p...
CVE-2017-5899
Directory traversal vulnerability in the setuid root helper binary in S-nail later S-mailx before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. dot dot in the randstr argument...