CVE-2006-5298

NONECVSS 0.0

0.0

The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.

🔗 References (16)

cve@mitrehttp://marc.info/?l=mutt-dev&m=115999486426292&w=2
cve@mitrehttp://secunia.com/advisories/22613
cve@mitrehttp://secunia.com/advisories/22640
cve@mitrehttp://secunia.com/advisories/22685
cve@mitrehttp://secunia.com/advisories/22686
cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2006:190
cve@mitrehttp://www.trustix.org/errata/2006/0061/
cve@mitrehttp://www.ubuntu.com/usn/usn-373-1
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=mutt-dev&m=115999486426292&w=2
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/22613
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/22640
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/22685
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/22686
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDKSA-2006:190
af854a3a-2127-422b-91ae-364da2661108http://www.trustix.org/errata/2006/0061/

Is Your Infrastructure Affected by CVE-2006-5298?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-5298

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-5298?