« List of all CVEs

CVE-2010-0825

Published: 4/5/2010 Last updated: 8/7/2024 Reserved: 3/3/2010

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks.

CNA assigner: canonical (cc1ad9ee-3454-478d-9317-d3e869d708bc) Requested by: n/a

Opam packages affected (1)

conf-emacs

Products affected (1)

Product Vendor Version
n/a n/a 3.0.0

References (14)