cve/2019/CVE-2019-18862.md

CVE-2019-18862

Description

maidag in GNU Mailutils before 3.8 is installed setuid and allows local privilege escalation in the url mode.

POC

Reference

• http://packetstormsecurity.com/files/155425/GNU-Mailutils-3.7-Privilege-Escalation.html
• http://packetstormsecurity.com/files/155425/GNU-Mailutils-3.7-Privilege-Escalation.html

Github

• https://github.com/0xprashant/offshore-notes
• https://github.com/ARPSyndicate/cvemon
• https://github.com/bcoles/local-exploits