github - ghsa-p7qx-2j9h-c63p

ghsa-p7qx-2j9h-c63p

Vulnerability from github

Published

2022-05-01 07:27

Modified

2022-05-01 07:27

Details

Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-5297"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-10-16T19:07:00Z",
    "severity": "LOW"
  },
  "details": "Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.",
  "id": "GHSA-p7qx-2j9h-c63p",
  "modified": "2022-05-01T07:27:02Z",
  "published": "2022-05-01T07:27:02Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-5297"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10601"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=mutt-dev\u0026m=115999486426292\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22613"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22640"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22685"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22686"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25529"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:190"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0386.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/20733"
    },
    {
      "type": "WEB",
      "url": "http://www.trustix.org/errata/2006/0061"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/usn-373-1"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4176"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cve-2006-5297

Vulnerability from cvelistv5

Published

2006-10-16 19:00

Modified

2024-08-07 19:48

Severity

Summary

References

URL	Tags
http://secunia.com/advisories/25529	third-party-advisory, x_refsource_SECUNIA
http://marc.info/?l=mutt-dev&m=115999486426292&w=2	mailing-list, x_refsource_MLIST
http://www.securityfocus.com/bid/20733	vdb-entry, x_refsource_BID
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10601	vdb-entry, signature, x_refsource_OVAL
http://www.trustix.org/errata/2006/0061/	vendor-advisory, x_refsource_TRUSTIX
http://secunia.com/advisories/22640	third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22613	third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22685	third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/22686	third-party-advisory, x_refsource_SECUNIA
http://www.ubuntu.com/usn/usn-373-1	vendor-advisory, x_refsource_UBUNTU
http://www.redhat.com/support/errata/RHSA-2007-0386.html	vendor-advisory, x_refsource_REDHAT
http://www.vupen.com/english/advisories/2006/4176	vdb-entry, x_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDKSA-2006:190	vendor-advisory, x_refsource_MANDRIVA

Impacted products

Vendor	Product
n/a	n/a

Show details on NVD website