2 matches found
CVE-2005-1151
CVE-2005-1151 affects qpopper 4.0.5 and earlier. The vulnerability arises because the process does not drop privileges before processing certain user-supplied files, allowing local users to overwrite or create arbitrary files with root privileges. Open vulnerability references show advisories acr...
CVE-2005-1152
CVE-2005-1152 affects qpopper 4.0.5 and earlier. The root cause is popauth.c not setting the umask, which may cause files to be created with group- or world-writable permissions. The provided references align with a low-severity issue (CVSS v2 base score 2.1). No patched version or remediation de...