File Permission Vulnerability in qpopper by Qualcomm
CVE-2005-1152

Currently unrated

Key Information:

Vendor: Debian
Status: Qpopper
Vendor: CVE Published:; 25 May 2005

What is CVE-2005-1152?

The vulnerability in qpopper occurs due to improper umask settings in the popauth.c file, resulting in the creation of files with group and world-writable permissions. This issue can expose sensitive information and allow unauthorized access, leading to a potential security breach. Users of qpopper 4.0.5 and earlier versions are advised to take immediate action to correct these permissions and ensure the integrity of their systems.

References

http://bugs.gentoo.org/attachment.cgi?id=58329&action=view

x_refsource_MISC

http://secunia.com/advisories/15505

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/15478

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 25, 2005
Vulnerability Reserved
Apr 18, 2005

Debian

What is CVE-2005-1152?

References

Timeline