[Simon Walter] Bug#506353: mailscanner: many scripts allow local users to overwrite arbitrary files, and more, via symlink attacks

Julian Field MailScanner at ecs.soton.ac.uk
Fri Dec 12 14:44:21 GMT 2008


Should be in 4.74.7-3. Thanks for reporting that. I'll fix my scripts 
one of these days so I don't need to tweak them in as many places! :-)

Jules.

On 12/12/08 14:13, Tony Yates wrote:
> Julian,
>
> The 4.74.7-2 beta package Solaris/Others seems to be missing the tnef
> tarball?
>
> Regards,
>
> Tony..
>
> --
> Tony Yates          Computer Centre, Brunel University, Uxbridge UB8 3PH
> Assistant Director  Tel: 01895 265699    E-mail: Tony.Yates at brunel.ac.uk
> ------------------------------------------------------------------------
>
>    

Jules

-- 
Julian Field MEng CITP CEng
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store

Need help customising MailScanner?
Contact me!
Need help fixing or optimising your systems?
Contact me!
Need help getting you started solving new requirements from your boss?
Contact me!

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.



More information about the MailScanner mailing list