[Simon Walter] Bug#506353: mailscanner: many scripts allow local users to overwrite arbitrary files, and more, via symlink attacks

Kai Schaetzl maillists at conactive.com
Tue Jan 6 13:53:31 GMT 2009

Hugo van der Kooij wrote on Fri, 12 Dec 2008 17:19:00 +0100:

> Care to share it with the rest of the world? Put it online somewhere if
> you want others to enjoy it too.

I just checked it with the latest MS and added a bit of explanation. You 
can get it from http://winware.org/centos/updatems.zip
The first script downloads and updates MS, the second updates the conf.
Comments welcome (suggest PM).


Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: http://www.conactive.com

More information about the MailScanner mailing list