Computer Security

emacs privilege escalation
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



emacs privilege escalation
Published:31.03.2010
Source:BUGTRAQ
SecurityVulns ID:10729
Type:local
Level:5/10
Description:It's possible to access different users' files via email helper.
Affected:EMACS : emacs 22.2
 EMACS : emacs 23.1
CVE:CVE-2010-0825 (lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.)
Original documentdocumentUBUNTU, [USN-919-1] Emacs vulnerability (31.03.2010)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru