Описание
Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 14.8.16-1 |
| bionic | not-affected | 14.8.16-1 |
| cosmic | not-affected | 14.8.16-1 |
| devel | not-affected | 14.8.16-1 |
| disco | not-affected | 14.8.16-1 |
| eoan | not-affected | 14.8.16-1 |
| esm-apps/bionic | not-affected | 14.8.16-1 |
| esm-apps/focal | not-affected | 14.8.16-1 |
| esm-apps/jammy | not-affected | 14.8.16-1 |
| esm-apps/xenial | released | 14.8.6-1ubuntu0.1~esm1 |
Показывать по
Ссылки на источники
EPSS
6.9 Medium
CVSS2
7 High
CVSS3
Связанные уязвимости
Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.
Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.
Directory traversal vulnerability in the setuid root helper binary in ...
Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.
EPSS
6.9 Medium
CVSS2
7 High
CVSS3