CVE-2001-0125
exmh 2.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the exmhErrorMsg temporary file.
| Software | From | Fixed in |
|---|---|---|
| exmh / exmh | - | 2.2.x |
| mandrakesoft / mandrake_linux | 7.2 | 7.2.x |
| debian / debian_linux | 2.2 | 2.2.x |
| mandrakesoft / mandrake_linux | 7.0 | 7.0.x |
| mandrakesoft / mandrake_linux_corporate_server | 1.0.1 | 1.0.1.x |
| mandrakesoft / mandrake_linux | 7.1 | 7.1.x |
| mandrakesoft / mandrake_linux | 6.0 | 6.0.x |
| mandrakesoft / mandrake_linux | 6.1 | 6.1.x |
- http://archives.neohapsis.com/archives/freebsd/2001-01/0543.html
- http://marc.info/?l=bugtraq&m=97846489313059&w=2
- http://marc.info/?l=bugtraq&m=97958594330100&w=2
- http://www.beedub.com/exmh/symlink.html
- http://www.debian.org/security/2001/dsa-022
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-015.php3
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5829
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime