CVE-2003-0308
published 2003-05-15CVE-2003-0308: The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via…
high7.2CVSS 3.1
AVLACLAuNCCICAC
The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doublebounce.pl.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | sendmail | < sendmail 8.12.9-2 (bookworm) | sendmail 8.12.9-2 (bookworm) |
| sendmail | sendmail | — | — |
| sendmail | sendmail | — | — |
| sendmail | sendmail | — | — |
| sendmail | sendmail | >= 0 < 8.12.9-2 | 8.12.9-2 |
| sendmail | sendmail | >= 0 < 8.12.9-2 | 8.12.9-2 |
| sendmail | sendmail | >= 0 < 8.12.9-2 | 8.12.9-2 |
| sendmail | sendmail | >= 0 < 8.12.9-2 | 8.12.9-2 |
CVSS provenance
nvd7.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH