6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
9.3%
The open_log function in log.c in Exim 4.72 and earlier does not check the
return value from (1) setuid or (2) setgid system calls, which allows local
users to append log data to arbitrary files via a symlink attack.
Author | Note |
---|---|
mdeslaur | may have been introduced by fix for CVE-2010-4345… |