Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1085

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2001-1085
Last Modified 05 Sep 2008 04:25:39
Published 05 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2001-1085

Summary

Lmail 2.7 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.

Vulnerable Systems

Application

  • Jon Zeeff Lmail 2.7


References

BUGTRAQ - 20010705 lmail local root exploit

XF - lmail-tmpfile-symlink(6809)

BID - 2984


Last Updated: 27 May 2016 10:36:31