{"id":"UBUNTU-CVE-2013-0350","details":"tmp_smtp.c in pktstat 1.8.5 allows local users to overwrite arbitrary files via a symlink attack on /tmp/smtp.log.","modified":"2025-07-16T07:31:07.529277Z","published":"2014-05-05T17:06:00Z","withdrawn":"2025-07-18T16:42:49Z","upstream":["CVE-2013-0350"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2013-0350"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2013-0350"}],"affected":[{"package":{"name":"pktstat","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/pktstat@1.8.5-3?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.8.5-3"}]}],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"pktstat","binary_version":"1.8.5-3"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-0350.json"}}],"schema_version":"1.7.3","severity":[{"type":"Ubuntu","score":"medium"}]}