CVE-2006-5297
CVE-2006-5297
Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://marc.info/?l=mutt-dev&m=115999486426292&w=2http://secunia.com/advisories/22613http://secunia.com/advisories/22640http://secunia.com/advisories/22685http://secunia.com/advisories/22686http://secunia.com/advisories/25529https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10601http://www.mandriva.com/security/advisories?name=MDKSA-2006:190http://www.redhat.com/support/errata/RHSA-2007-0386.htmlhttp://www.securityfocus.com/bid/20733http://www.trustix.org/errata/2006/0061/http://www.ubuntu.com/usn/usn-373-1