← Back

CVE-2004-0881

nvd nist
Published: Jan 27, 2005Modified: Apr 16, 2026

JSON object

Loading...
2.1
Vector
AV:L/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD

Description

getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir.

Affected (27)

Getmail
1 product
Getmail
Gentoo
1 product
Linux
Slackware
1 product
Slackware Linux
Configuration A
23 vulnerable
Vulnerable SoftwareAffected Versions
Getmail
Getmail
Version 2.3.7
Getmail
Version 3.x
Getmail
Version 4.0.0_b10
Getmail
Version 4.0.10
Getmail
Version 4.0.11
Getmail
Version 4.0.12
Getmail
Version 4.0.13
Getmail
Version 4.0.1
Getmail
Version 4.0.2
Getmail
Version 4.0.3
Getmail
Version 4.0.4
Getmail
Version 4.0.5
Getmail
Version 4.0.6
Getmail
Version 4.0.7
Getmail
Version 4.0.8
Getmail
Version 4.0.9
Getmail
Version 4.0
Getmail
Version 4.1.1
Getmail
Version 4.1.2
Getmail
Version 4.1.3
Getmail
Version 4.1.4
Getmail
Version 4.1.5
Getmail
Version 4.1
Configuration B
4 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Version 1.4
Slackware
Slackware Linux
Version 10.0
Slackware Linux
Version 9.1
Slackware Linux
Version current

References (10)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.