← back
CVE-2003-1324

CVE-2003-1324

EPSS 0.3%
Race condition in the can_open function in Elm ME+ 2.4, when installed setgid mail and the operating system lacks POSIX saved ID support, allows local users to read and modify certain files with the privileges of the mail group.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.elmme-mailer.org/elm-2.4ME+PL109S.patch.gz