Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Metamail | Metamail_corporation | 2.7 (including) | 2.7 (including) |