CVE-2008-2936

Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message.  NOTE: this can be leveraged to gain privileges if there is a symlink to an init script.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.2 UNKNOWN
LOCAL
HIGH
AV:L/AC:H/Au:N/C:C/I:C/A:C
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
VendorProductVersion
postfixpostfix
2.3.0
postfixpostfix
2.3.1
postfixpostfix
2.3.2
postfixpostfix
2.3.3
postfixpostfix
2.3.4
postfixpostfix
2.3.5
postfixpostfix
2.3.6
postfixpostfix
2.3.7
postfixpostfix
2.3.8
postfixpostfix
2.3.9
postfixpostfix
2.3.10
postfixpostfix
2.3.11
postfixpostfix
2.3.12
postfixpostfix
2.3.13
postfixpostfix
2.3.14
postfixpostfix
2.4.0
postfixpostfix
2.4.1
postfixpostfix
2.4.2
postfixpostfix
2.4.3
postfixpostfix
2.4.4
postfixpostfix
2.4.5
postfixpostfix
2.4.6
postfixpostfix
2.4.7
postfixpostfix
2.5.0
postfixpostfix
2.5.1
postfixpostfix
2.5.2
postfixpostfix
2.5.3
postfixpostfix
2.6.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
postfix
bullseye
3.5.25-0+deb11u1
fixed
bookworm
3.7.11-0+deb12u1
fixed
sid
3.9.0-3
fixed
trixie
3.9.0-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
postfix
hardy
Fixed 2.5.1-2ubuntu1.1
released
gutsy
Fixed 2.4.5-3ubuntu1.2
released
feisty
Fixed 2.3.8-2ubuntu0.2
released
dapper
Fixed 2.2.10-1ubuntu0.2
released
Common Weakness Enumeration
References
ftp://ftp.porcupine.org/mirrors/postfix-release/experimental/postfix-2.6-20080814.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.3.15.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.4.8.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.5.4.HISTORY
http://article.gmane.org/gmane.mail.postfix.announce/110
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00002.html
http://secunia.com/advisories/31469
http://secunia.com/advisories/31474
http://secunia.com/advisories/31477
http://secunia.com/advisories/31485
http://secunia.com/advisories/31500
http://secunia.com/advisories/31530
http://secunia.com/advisories/32231
http://security.gentoo.org/glsa/glsa-200808-12.xml
http://securityreason.com/securityalert/4160
http://wiki.rpath.com/Advisories:rPSA-2008-0259
http://www.debian.org/security/2008/dsa-1629
http://www.kb.cert.org/vuls/id/938323
http://www.mandriva.com/security/advisories?name=MDVSA-2008:171
http://www.redhat.com/support/errata/RHSA-2008-0839.html
http://www.securityfocus.com/archive/1/495474/100/0/threaded
http://www.securityfocus.com/archive/1/495632/100/0/threaded
http://www.securityfocus.com/archive/1/495882/100/0/threaded
http://www.securityfocus.com/bid/30691
http://www.securitytracker.com/id?1020700
http://www.vupen.com/english/advisories/2008/2385
https://exchange.xforce.ibmcloud.com/vulnerabilities/44460
https://issues.rpath.com/browse/RPL-2689
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10033
https://usn.ubuntu.com/636-1/
https://www.exploit-db.com/exploits/6337
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00271.html
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00287.html
ftp://ftp.porcupine.org/mirrors/postfix-release/experimental/postfix-2.6-20080814.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.3.15.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.4.8.HISTORY
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.5.4.HISTORY
http://article.gmane.org/gmane.mail.postfix.announce/110
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00002.html
http://secunia.com/advisories/31469
http://secunia.com/advisories/31474
http://secunia.com/advisories/31477
http://secunia.com/advisories/31485
http://secunia.com/advisories/31500
http://secunia.com/advisories/31530
http://secunia.com/advisories/32231
http://security.gentoo.org/glsa/glsa-200808-12.xml
http://securityreason.com/securityalert/4160
http://wiki.rpath.com/Advisories:rPSA-2008-0259
http://www.debian.org/security/2008/dsa-1629
http://www.kb.cert.org/vuls/id/938323
http://www.mandriva.com/security/advisories?name=MDVSA-2008:171
http://www.redhat.com/support/errata/RHSA-2008-0839.html
http://www.securityfocus.com/archive/1/495474/100/0/threaded
http://www.securityfocus.com/archive/1/495632/100/0/threaded
http://www.securityfocus.com/archive/1/495882/100/0/threaded
http://www.securityfocus.com/bid/30691
http://www.securitytracker.com/id?1020700
http://www.vupen.com/english/advisories/2008/2385
https://exchange.xforce.ibmcloud.com/vulnerabilities/44460
https://issues.rpath.com/browse/RPL-2689
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10033
https://usn.ubuntu.com/636-1/
https://www.exploit-db.com/exploits/6337
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00271.html
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00287.html