CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1808

Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.5%

CVSS Severity

CVSS v2 Score 2.1

References

http://marc.info/?l=bugtraq&m=107910934926062&w=2
http://www.securityfocus.com/bid/9850
https://exchange.xforce.ibmcloud.com/vulnerabilities/15460
http://marc.info/?l=bugtraq&m=107910934926062&w=2
http://www.securityfocus.com/bid/9850
https://exchange.xforce.ibmcloud.com/vulnerabilities/15460

Products affected by CVE-2004-1808

Metamail Corporation » Metamail » Version: 2.7

cpe:2.3:a:metamail_corporation:metamail:2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1808

Products

Pricing

Contact Us