CVE-2008-2936
postfix - local privilege escalation
EPSS 0.23%
Description
Postfix before 2.3.15, 2.4 before 2.4.8, 2.5 before 2.5.4, and 2.6 before 2.6-20080814, when the operating system supports hard links to symlinks, allows local users to append e-mail messages to a file to which a root-owned symlink points, by creating a hard link to this symlink and then sending a message. NOTE: this can be leveraged to gain privileges if there is a symlink to an init script.
How to fix CVE-2008-2936
To remediate CVE-2008-2936, upgrade the affected package to a fixed version below.
- Debian/postfix—upgrade to 2.5.4-1 or later
- —upgrade to 2.3.8-2etch1 or later
- —upgrade to 2.3.8-2+etch1 or later
- —upgrade to 2.5.2-2lenny1 or later
Is CVE-2008-2936 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 2.5.4-1
- from 0, < 2.3.8-2etch1
- from 0, < 2.3.8-2+etch1
- from 0, < 2.5.2-2lenny1