CVE-2002-1193

Name of the Vulnerable Software and Affected Versions tkmail versions prior to 4.0beta9-8.1

Description The issue concerns multiple vulnerabilities in the tkmail package of the Debian GNU/Linux operating system, which can be exploited by a local attacker to compromise the integrity of protected information. A symlink attack on temporary files allows local users to create or overwrite files as other users.

Recommendations For tkmail versions prior to 4.0beta9-8.1, update to version 4.0beta9-8.1 or later to resolve the issue. As a temporary workaround, consider restricting access to temporary files to minimize the risk of exploitation.