Security Advisory

CVE-2006-5298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-10-16 19:00:00

Last updated 2024-08-07 19:48:28

Assigner mitre

State PUBLISHED

Description

The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.

← Browse all CVEs View on cve.org ↗