CVE-2015-6566
zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.
Date published : 2016-01-11
https://download.zarafa.com/community/final/7.2/final-changelog-7.2.txt