cvedb.io
CVE-2016-6253
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2017-01-20T15:59:00.567 · Last modified 2026-06-17T00:50:41.930

Summary

mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.

Affected products

netbsd — netbsd

Does this affect you?

Add your gear to cvedb and we'll alert you only when netbsd ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.