Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2004-1808
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-31 Dec, 2004 | 05:00
Updated At-03 Apr, 2025 | 01:03

Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.02.1LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
CPE Matches
metamail_corporation
metamail_corporation
>>metamail>>2.7
cpe:2.3:a:metamail_corporation:metamail:2.7:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
Organization : Red Hat
Last Modified : 2009-06-01T00:00:00

The Red Hat Security Response Team rated this issue as having low security impact. This issue affected Red Hat Enterprise Linux 2.1 but due to the low severity will not be fixed. metamail was not shipped in Red Hat Enterprise Linux 3, 4, or 5.

References
HyperlinkSourceResource
http://marc.info/?l=bugtraq&m=107910934926062&w=2cve@mitre.org
N/A
http://www.securityfocus.com/bid/9850cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/15460cve@mitre.org
N/A
http://marc.info/?l=bugtraq&m=107910934926062&w=2af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/bid/9850af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/15460af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found