2023-05-30 00:00:00
mitre
PUBLISHED
imapsync through 2.229 uses predictable paths under /tmp and /var/tmp in its default mode of operation. Both of these are typically world-writable, and thus (for example) an attacker can modify imapsyncs cache and overwrite files belonging to the user who runs it.