Vulnerability & Exploit Database

Displaying entries 1 - 10 of 11 in total

Results for: CVE-2008-2936 Back to search

USN-636-1: Postfix vulnerability Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

SUSE Linux Security Advisory: SUSE-SA:2008:040 Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

SUSE Linux Security Vulnerability: CVE-2008-2936 Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

Postfix vulnerability (CVE-2008-2936) Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

RHSA-2008:0839: postfix security update Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix is a Mail Transport Agent (MTA), supporting LDAP, SMTP AUTH (SASL),and TLS.A flaw was found in the way Postfix dereferences symbolic links. If a localuser has write access to a mail spool directory with no root mailbox, itmay be possible for them to append arbitrary data to files that root haswrite permission to. (CVE-2008-2936)R...

ELSA-2008-0839 Moderate: Enterprise Linux postfix security update Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

Gentoo Linux: CVE-2008-2936: Postfix: Local privilege escalation vulnerability Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

Cent OS: CVE-2008-2936: CESA-2008:0839 (postfix) Vulnerability

  • Severity: 6
  • Published: August 18, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

SUSE-SA:2008:040: postfix Vulnerability

  • Severity: 6
  • Published: August 14, 2008

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to...

SUSE-SA:2007:018: Linux Kernel Vulnerability

  • Severity: 8
  • Published: February 27, 2007

The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect pointer.