Lucene search
HistoryMay 25, 2005 - 4:00 a.m.
CVE-2005-1152
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.1
Confidence
Low
EPSS
0.001
Percentile
25.7%
popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions.
Affected configurations
Node
debianqpopperRange≤4.0.4
ORdebianqpopperMatch4.0.5
Related
ubuntucve
ubuntucve
CVE-2005-1152
2005-05-25 00:00:00
cvelist
cvelist
CVE-2005-1152
2005-05-25 04:00:00
cve
cve
CVE-2005-1152
2005-05-25 04:00:00
osv
osv
qpopper - missing privilege release
2005-05-26 00:00:00
openvas
openvas
FreeBSD Ports: qpopper
2008-09-04 00:00:00
Debian Security Advisory DSA 728-1 (qpopper)
2008-01-17 00:00:00
FreeBSD Ports: qpopper
2008-09-04 00:00:00
debian
debian
[SECURITY] [DSA 728-2] New qpopper packages fix arbitrary file overwriting
2005-05-26 04:49:46
[SECURITY] [DSA 728-1] New qpopper packages fix arbitrary file overwriting
2005-05-25 15:34:54
[SECURITY] [DSA 728-1] New qpopper packages fix arbitrary file overwriting
2005-05-25 15:34:54
freebsd
freebsd
qpopper -- multiple privilege escalation vulnerabilities
2005-05-26 00:00:00
nessus
nessus
Qpopper < 4.0.6 Multiple Insecure File Handling Local Privilege Escalation
2005-05-24 00:00:00
SuSE9 Security Update : qpopper (YOU Patch Number 10045)
2009-09-24 00:00:00
GLSA-200505-17 : Qpopper: Multiple Vulnerabilities
2005-05-28 00:00:00
gentoo
gentoo
Qpopper: Multiple Vulnerabilities
2005-05-23 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200505-17 ] Qpopper: Multiple Vulnerabilities
2005-05-24 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.1
Confidence
Low
EPSS
0.001
Percentile
25.7%
Related for NVD:CVE-2005-1152