Qpopper
by Debian
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-1151 | 0.00 | — | 0.00 | May 25, 2005 | qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root. | |||
| CVE-2005-1152 | 0.00 | — | 0.00 | May 25, 2005 | popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions. |
- CVE-2005-1151May 25, 2005risk 0.00cvss —epss 0.00
qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root.
- CVE-2005-1152May 25, 2005risk 0.00cvss —epss 0.00
popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions.