Maildrop
by Maildrop
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2010-0301 | 0.00 | — | 0.00 | Feb 4, 2010 | main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file. | ||
| CVE-2005-2655 | 0.00 | — | 0.00 | Aug 30, 2005 | lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments. |
- CVE-2010-0301Feb 4, 2010risk 0.00cvss —epss 0.00
main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.
- CVE-2005-2655Aug 30, 2005risk 0.00cvss —epss 0.00
lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.