Local File Overwrite Vulnerability in qpopper by Tyndall Group
CVE-2005-1151
Currently unrated
What is CVE-2005-1151?
The qpopper mail server versions up to 4.0.5 have a vulnerability that allows local users to overwrite or create arbitrary files with root privileges. This occurs because qpopper fails to properly drop privileges before processing specified user files. As a result, unauthorized file modifications can be executed, potentially compromising system integrity and security. It's crucial for administrators using affected versions to apply security assessments and implement corrective measures.