Slackware 10.0 / 9.1 / current : getmail (SSA:2004-278-01)

Low Nessus Plugin ID 18776


The remote Slackware host is missing a security update.


New getmail packages are available for Slackware 9.1, 10.0 and
-current to fix a security issue. If getmail is used as root to deliver to user owned files or directories, it can be made to overwrite system files.


Update the affected getmail package.

See Also

Plugin Details

Severity: Low

ID: 18776

File Name: Slackware_SSA_2004-278-01.nasl

Version: $Revision: 1.15 $

Type: local

Published: 2005/07/13

Modified: 2013/06/01

Dependencies: 12634

Risk Information

Risk Factor: Low


Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:slackware:slackware_linux:getmail, cpe:/o:slackware:slackware_linux, cpe:/o:slackware:slackware_linux:10.0, cpe:/o:slackware:slackware_linux:9.1

Required KB Items: Host/local_checks_enabled, Host/Slackware/release, Host/Slackware/packages

Patch Publication Date: 2004/10/04

Vulnerability Publication Date: 2004/09/19

Reference Information

CVE: CVE-2004-0880, CVE-2004-0881

OSVDB: 10072

SSA: 2004-278-01