Denial of Service Vulnerability in qpopper Mail Server by Qualcomm
CVE-2000-1198

5.5MEDIUM

Key Information:

Vendor
Qualcomm
Status
Qpopper
Vendor
CVE Published:
31 August 2001

Summary

The qpopper POP server contains a vulnerability that allows local users to create lock files with predictable names, leading to a denial of service for other users. By generating these files, an attacker can prevent legitimate users from accessing their email accounts, effectively disrupting mail services. This issue underscores the importance of secure file handling and user access controls within mail server applications.

References

http://marc.info/?l=bugtraq&m=95624629924545&w=2
mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=95634229925906&w=2
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/1132
vdb-entryx_refsource_BID

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.