2005-08-30 04:00:00
debian
PUBLISHED
lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.