Qpopper Security Vulnerabilities and Issues — Qpopper CVE List

Lucene search

QualcommQpopper

4 matches found

CVE•added 2003/04/02 5:0 a.m.•46 views

CVE-2002-0454

Qpopper (aka in.qpopper or popper) 4.0.3 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a very large string, which causes an infinite loop.

5CVSS6.7AI score0.05479EPSS

CVE•added 2000/10/13 4:0 a.m.•43 views

CVE-2000-0320

Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.

5CVSS6.6AI score0.00688EPSS

CVE•added 2001/09/12 4:0 a.m.•41 views

CVE-2000-1198

qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other users (lack of mail access) by creating lock files for other mail boxes.

5.5CVSS6.7AI score0.00308EPSS

CVE•added 2002/02/02 5:0 a.m.•34 views

CVE-2001-1068

qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provided instead of a valid name, which allows remote attackers to determine valid usernames on the system.

5CVSS7.3AI score0.01225EPSS