9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
40.2%
mail2sms.sh in smsclient 2.0.8z allows local users to overwrite arbitrary
files via a symlink attack on a (1) /tmp/header.##### or (2)
/tmp/body.##### temporary file, or append data to arbitrary files via a
symlink attack on the (3) /tmp/sms.log temporary file.