Courier sqwebmail prior to 0.40.0 does not quickly drop privileges after startup in certain cases, which could allow local users to read arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
double precision incorporated courier mta 0.37.3 |
||
double precision incorporated courier mta 0.40 |