CVE-2010-0825

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnu:emacs:22.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:emacs:22.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:emacs:22.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:emacs:23.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-04-05 15:30

Updated : 2024-02-28 11:41


NVD link : CVE-2010-0825

Mitre link : CVE-2010-0825

CVE.ORG link : CVE-2010-0825


JSON object : View

Products Affected

gnu

  • emacs
CWE
CWE-264

Permissions, Privileges, and Access Controls