CVE-2003-0308

EPSS 0.06%

sendmail - insecure temporary files

Published: 5/15/2003Modified: 4/28/2026

Description

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via (1) expn, (2) checksendmail, or (3) doublebounce.pl.

Affected packages (2)

Debian/sendmailfrom 0, < 8.12.9-2
Debian/sendmailfrom 0, < 8.12.3-6.4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0308