CVE-1999-0114

Name of the Vulnerable Software and Affected Versions elm-2.4 mail package

Description The issue allows local users to execute commands as other users and read other users' files through the filter command in the Elm mail package. This is achieved by using a symlink attack.

Recommendations For elm-2.4 mail package, consider restricting access to the filter command to prevent exploitation until a patch is available. As a temporary workaround, avoid using the filter command in the Elm mail package until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.