Vulnerability Details CVE-2010-0825
lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 24.3%
CVSS Severity
CVSS v2 Score 4.4
References
- http://secunia.com/advisories/39155
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:083
- http://www.ubuntu.com/usn/USN-919-1
- http://www.vupen.com/english/advisories/2010/0734
- http://www.vupen.com/english/advisories/2010/0952
- https://bugs.launchpad.net/ubuntu/+bug/531569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57457
- http://secunia.com/advisories/39155
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:083
- http://www.ubuntu.com/usn/USN-919-1
- http://www.vupen.com/english/advisories/2010/0734
- http://www.vupen.com/english/advisories/2010/0952
- https://bugs.launchpad.net/ubuntu/+bug/531569
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57457