DescriptionPostfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to gain privileges if there is a symlink to an init script.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2008:040, published Thu, 14 Aug 2008 14:00:00 +0000
SUSE Timeline for this CVECVE page created: Tue Jul 9 16:04:43 2013
CVE page last modified: Mon Feb 13 11:23:45 2023