Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2003-0440

Published: 18/08/2003 Updated: 11/10/2017
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Semi

Vulnerability Summary

The (1) semi MIME library 1.14.5 and previous versions, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

semi semi 1.14.3

debian debian linux 3.0

Vendor Advisories

Debian Security Advisories: DSA-339-1 semi -- insecure temporary file
NOTE: due to a combination of administrative problems, this advisory was erroneously released with the identifier "DSA-337-1" DSA-337-1 correctly refers to an earlier advisory regarding gtksee semi, a MIME library for GNU Emacs, does not take appropriate security precautions when creating temporary files This bug could potentially be exploited t ...

References

NVD-CWE-Otherhttp://www.debian.org/security/2003/dsa-339http://www.redhat.com/support/errata/RHSA-2003-234.htmlhttp://www.redhat.com/support/errata/RHSA-2003-231.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A569https://nvd.nist.govhttps://www.debian.org/security/./dsa-339
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook