CVE-2001-0744 — IMP vulnerability

2 documents2 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 74.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

1

Timeline

PublishedOct 18

Latest updateMay 3

Description

Horde IMP 2.2.4 and earlier allows local users to overwrite files via a symlink attack on a temporary file.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDhorde/imp2.2.4+5

Patches

Patch: archives.neohapsis.com ↗Patch: www.horde.org ↗Patch: archives.neohapsis.com ↗

🔴Vulnerability Details

1

GHSA

GHSA-gjg7-gj7r-j2c8: Horde IMP 2↗2022-05-03

▶