CVE-2006-5298

Name of the Vulnerable Software and Affected Versions Mutt versions 1.5.12 and earlier

Description The issue arises from the mutt adv mktemp function in the Mutt mail client, which fails to properly verify that temporary files have been created with restricted permissions. This could allow local users to create files with weak permissions via a race condition between the mktemp and safe fopen function calls.

Recommendations For versions 1.5.12 and earlier, update to a version that addresses this issue, as the current version does not properly restrict permissions for temporary files.