Chip Salzenberg » Deliver : Security Vulnerabilities, CVEs,
Chip Salzenberg Deliver does not properly associate a lockfile with the user who created the file, which allows local users to cause a denial of service (blockage of incoming e-mail) by creating lockfiles for arbitrary mailboxes.
Max CVSS
2.1
EPSS Score
0.04%
Published
2010-03-26
Updated
2018-10-10
Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive information, and possibly change the ownership of arbitrary files via a symlink attack on an unspecified file.
Max CVSS
6.9
EPSS Score
0.04%
Published
2010-03-26
Updated
2018-10-10
2 vulnerabilities found