Vulnerabilities (CVE)

Filtered by vendor Debian Subscribe
Filtered by product Qpopper
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-1152 1 Debian 1 Qpopper 2024-02-28 2.1 LOW N/A
popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions.
CVE-2005-1151 1 Debian 1 Qpopper 2024-02-28 7.2 HIGH N/A
qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root.