CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6253

mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.216

EPSS Ranking 95.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2016-6253

Netbsd » Netbsd » Version: 6.0

cpe:2.3:o:netbsd:netbsd:6.0
Netbsd » Netbsd » Version: 6.0.1

cpe:2.3:o:netbsd:netbsd:6.0.1
Netbsd » Netbsd » Version: 6.0.2

cpe:2.3:o:netbsd:netbsd:6.0.2
Netbsd » Netbsd » Version: 6.0.3

cpe:2.3:o:netbsd:netbsd:6.0.3
Netbsd » Netbsd » Version: 6.0.4

cpe:2.3:o:netbsd:netbsd:6.0.4
Netbsd » Netbsd » Version: 6.0.5

cpe:2.3:o:netbsd:netbsd:6.0.5
Netbsd » Netbsd » Version: 6.0.6

cpe:2.3:o:netbsd:netbsd:6.0.6
Netbsd » Netbsd » Version: 6.1

cpe:2.3:o:netbsd:netbsd:6.1
Netbsd » Netbsd » Version: 6.1.1

cpe:2.3:o:netbsd:netbsd:6.1.1
Netbsd » Netbsd » Version: 6.1.2

cpe:2.3:o:netbsd:netbsd:6.1.2
Netbsd » Netbsd » Version: 6.1.3

cpe:2.3:o:netbsd:netbsd:6.1.3
Netbsd » Netbsd » Version: 6.1.4

cpe:2.3:o:netbsd:netbsd:6.1.4
Netbsd » Netbsd » Version: 6.1.5

cpe:2.3:o:netbsd:netbsd:6.1.5
Netbsd » Netbsd » Version: 7.0

cpe:2.3:o:netbsd:netbsd:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6253

Products

Pricing

Contact Us