Oval Definition:oval:org.mitre.oval:def:569
Revision Date:2007-04-25Version:17
Title:Symlink Attack Vulnerability in semi/wemi MIME Libraries
Description:The (1) semi MIME library 1.14.5 and earlier, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0440
Platform(s):Red Hat Linux 9
Product(s):semi MIME library
Definition Synopsis
  • Software section
  • Red Hat 9 is installed
  • AND ix86 architecture
  • AND Vulnerable Config
  • wl version is less than 2.10.1-1.1
  • OR wl-xemacs version is less than 2.10.1-1.1
  • AND Configuration section
  • Vulnerable Config
  • /usr/bin/emacs is executable
  • /usr/bin/emacs is executable
  • OR /usr/bin/emacs is executable
  • OR /usr/bin/emacs is executable
  • OR /usr/bin/xemacs is executable
  • /usr/bin/xemacs is executable
  • OR /usr/bin/xemacs is executable
  • OR /usr/bin/xemacs is executable
    • BACK