CVE-2009-1601
NONE
Published May 11, 200917y ago · Modified Jun 16, 20262w ago
Published May 11, 2009 17y ago
Last Modified Jun 16, 2026 2w ago
Description
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory.
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-264
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| ubuntu | linux | 9.04 | any |
References 5
- secunia.com http://secunia.com/advisories/35000
- securityfocus.com http://www.securityfocus.com/bid/34818
- ubuntu.com http://www.ubuntu.com/usn/USN-770-1
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/50311
- launchpad.net https://launchpad.net/bugs/365823
Remediation
- securityfocus.com http://www.securityfocus.com/bid/34818