CVE-2004-0880

3 documents3 sources
Severity
1.2LOW
EPSS
0.1%
top 73.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Gentoo LinuxGetmail GetmailSlackware Slackware Linux
Timeline
PublishedJan 27
Latest updateApr 29

Description

getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file.

CVSS vector

AV:L/AC:H/C:N/I:P/A:NExploitability: 1.9 | Impact: 2.9

Affected Packages3 packages

NVDgetmail/getmail23 versions+22
NVDgentoo/linux1.4
NVDslackware/slackware_linux10.0, 9.1, current+2

🔴Vulnerability Details

2
GHSA
GHSA-9w9w-mq56-fq64: getmail 42022-04-29
CVEList
CVE-2004-0880: getmail 42004-09-24