getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-01-27
Updated
2017-07-11
getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.
Max CVSS
1.2
EPSS Score
0.04%
Published
2005-01-27
Updated
2017-07-11
2 vulnerabilities found