Metamail prior to 2.7-7.2 allows remote malicious users to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
metamail corporation metamail |