Sendmail < 8.8.4 Group Write File Hardlink Privilege Escalation
Medium Nessus Plugin ID 11349
SynopsisThe remote host has an application that is affected by local privilege escalation vulnerability.
DescriptionThe remote sendmail server, according to its version number, allows local users to write to a file and gain group permissions via a .forward or :include: file.
SolutionInstall sendmail newer than 8.8.4 or install a vendor-supplied patch.