Title : SuSE Security Update Fixes Postfix Privilege Escalation Vulnerabilities VUPEN ID : VUPEN/ADV-2008-2401 CVE ID : CVE-2008-2936 - CVE-2008-2937
Rated as : Low Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2008-08-19
Technical Description
Two vulnerabilities have been identified in various SuSE products, which could be exploited by malicious users to bypass security restrictions, gain knowledge of sensitive information, or potentially obtain elevated privileges. These issues are caused by errors in Postfix. For additional information, see : VUPEN/ADV-2008-2385
