Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0744

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0744
Last Modified 10 Sep 2008 03:08:44
Published 18 Oct 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0744

Summary

Horde IMP 2.2.4 and earlier allows local users to overwrite files via a symlink attack on a temporary file.

Vulnerable Systems

Application

  • Horde Imp 2.0

  • Horde Imp 2.2

  • Horde Imp 2.2.1

  • Horde Imp 2.2.2

  • Horde Imp 2.2.3

  • Horde Imp 2.2.4


References

CONFIRM - http://www.horde.org/imp/2.2/news.php

BUGTRAQ - 20010531 Imp-2.2.4 temporary files

CALDERA - CSSA-2001-025.0


Last Updated: 27 May 2016 10:36:22