Vulnerabilities > CVE-2004-0423 - Local Security vulnerability in ssmtp

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
ssmtp

Summary

The log_event function in ssmtp 2.50.6 and earlier allows local users to overwrite arbitrary files via a symlink attack on the ssmtp.log temporary log file.

Vulnerable Configurations

Part Description Count
Application
Ssmtp
1