tkmail before 4.0beta9-8.1 allows local users to create or overwrite files as users via a symlink attack on temporary files.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| tkmail | tkmail | 4.0_beta1 |
| tkmail | tkmail | 4.0_beta6 |
| tkmail | tkmail | 4.0_beta9 |
| tkmail | tkmail | 4.0_beta8 |
| tkmail | tkmail | 4.0_beta4 |