CVE-2010-0825

Currently unrated

Key Information:

Vendor: Gnu
Status: Emacs
Vendor: CVE Published:; 5 April 2010

Summary

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

https://exchange.xforce.ibmcloud.com/vulnerabilities/57457

vdb-entryx_refsource_XF

http://www.ubuntu.com/usn/USN-919-1

vendor-advisoryx_refsource_UBUNTU

Timeline

Vulnerability published
Apr 5, 2010
Vulnerability Reserved
Mar 3, 2010