← back
CVE-2008-5155

CVE-2008-5155

EPSS 1.3%
mail2sms.sh in smsclient 2.0.8z allows local users to overwrite arbitrary files via a symlink attack on a (1) /tmp/header.##### or (2) /tmp/body.##### temporary file, or append data to arbitrary files via a symlink attack on the (3) /tmp/sms.log temporary file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.debian.org/debian-devel/2008/08/msg00347.htmlhttp://uvw.ru/report.sid.txthttp://www.securityfocus.com/bid/32405