Detections
Analytics

CVE-2001-0623

high

Description

sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain privileges.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6430

http://www.debian.org/security/2001/dsa-052

http://www.debian.org/security/2001/dsa-050

Details

Source: Mitre, NVD

Published: 2001-08-02

Updated: 2017-12-19

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High