CVE-2013-0350

pkstat 1.8.5 - Arbitrary File Write via Symlink Attack on /tmp/smtp.log

Title source: llm
STIX 2.1

Description

tmp_smtp.c in pktstat 1.8.5 allows local users to overwrite arbitrary files via a symlink attack on /tmp/smtp.log.

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2013/q1/417
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/90588

Scores

EPSS 0.0032
EPSS Percentile 23.6%

Details

CWE
CWE-59
Status published
Products (1)
david_leonard/pkstat 1.8.5
Published May 05, 2014
Tracked Since Feb 18, 2026