PT-2019-6552 · None · Mailscanner
Raphael Geissert
·
Published
2019-11-12
·
Updated
2019-11-15
·
CVE-2010-3095
CVSS v2.0
3.3
Low
| Vector | AV:L/AC:M/Au:N/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
MailScanner versions prior to 4.79.11-2.1
Description
The issue allows local users to overwrite arbitrary files via a symlink attack on certain temporary files. This problem exists due to an incomplete fix for a previously identified issue.
Recommendations
For versions prior to 4.79.11-2.1, update to version 4.79.11-2.1 or later to resolve the issue.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mailscanner