CVE-2003-1452

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Qpopper
Vendor: CVE Published:; 31 December 2003

Summary

Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.

References

http://securityreason.com/securityalert/3268

third-party-advisoryx_refsource_SREASON

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/...

mailing-listx_refsource_VULNWATCH

http://www.securityfocus.com/archive/1/319811

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
Oct 22, 2007
Vulnerability published
Dec 31, 2003