XMail < 1.27 Insecure Temporary File Creation
Low Nessus Plugin ID 44942
SynopsisThe remote host is running a mail server that creates temporary files insecurely.
DescriptionAccording to its SMTP service banner, the version of XMail running on the remote host creates temporary files insecurely.
A local attacker could exploit this to overwrite arbitrary files by using symlink attacks, which could lead to privilege escalation.
SolutionUpgrade to XMail 1.27 or later.