Computer Security
[EN] securityvulns.ru no-pyccku


maildrop privilege escalation
Published:04.02.2010
Source:
SecurityVulns ID:10586
Type:local
Threat Level:
6/10
Affected:MAILDROP : maildrop 2.0
CVE:CVE-2010-0301 (main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1981-2] New maildrop packages fix regression (04.02.2010)
 documentDEBIAN, [SECURITY] [DSA 1981-1] New maildrop packages fix privilege escalation (04.02.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod