Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-0301

Опубликовано: 10 янв. 2010
Источник: redhat
CVSS2: 3.3
EPSS Низкий

Описание

main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=559681maildrop: does not drop supplimentary groups when dropping privileges

EPSS

Процентиль: 16%
0.00051
Низкий

3.3 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-0301

ubuntu
почти 16 лет назад

main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.

nvd логотип

CVE-2010-0301

nvd
почти 16 лет назад

main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.

debian логотип

CVE-2010-0301

debian
почти 16 лет назад

main.C in maildrop 2.3.0 and earlier, when run by root with the -d opt ...

github логотип

GHSA-7mg2-6qgr-3p64

github
больше 3 лет назад

main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.

EPSS

Процентиль: 16%
0.00051
Низкий

3.3 Low

CVSS2