High severity7.8NVD Advisory· Published Jan 20, 2017· Updated May 13, 2026
CVE-2016-6253
CVE-2016-6253
Description
mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- akat1.plnvdExploitThird Party Advisory
- packetstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.rapid7.com/db/modules/exploit/unix/local/netbsd_mail_localnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/40141/nvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/40385/nvdExploitThird Party AdvisoryVDB Entry
- ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2016-006.txt.ascnvdVendor Advisory
- www.securityfocus.com/bid/92101nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036429nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.