PT-2003-2268 · Elm · Elm Me+

Published

2003-12-31

Updated

2008-09-05

CVE-2003-1323

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Elm ME+ version 2.4 before PL109S

Description The issue allows local users to read and modify certain files with the privileges of the mail group via unspecified vectors when Elm ME+ is installed setgid mail and the operating system lacks POSIX saved ID support.

Recommendations For Elm ME+ version 2.4 before PL109S, update to a version that includes the PL109S patch to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-1323

Affected Products

Elm Me+

PT-2003-2268 · Elm · Elm Me+

CVE-2003-1323

Related Identifiers

Affected Products

References · 2