Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2005-2655
HistoryAug 30, 2005 - 12:00 a.m.

CVE-2005-2655

2005-08-3000:00:00
ubuntu.com
ubuntu.com
8

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

27.5%

JSON

lockmail in maildrop before 1.5.3 does not drop privileges before executing
commands, which allows local users to gain privileges via command line
arguments.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchmaildrop< 1.5.3-2UNKNOWN
ubuntu6.10noarchmaildrop< 1.5.3-2UNKNOWN
ubuntu7.04noarchmaildrop< 1.5.3-2UNKNOWN

Related

debian 2
debiancve 1
cve 1
openvas 2
nessus 1
nvd 1
cvelist 1
debian
debian
[SECURITY] [DSA 791-1] New maildrop packages fix arbitrary group mail command execution
2005-08-30 06:04:58
[SECURITY] [DSA 791-1] New maildrop packages fix arbitrary group mail command execution
2005-08-30 06:04:58
debiancve
debiancve
CVE-2005-2655
2005-08-30 17:03:00
cve
cve
CVE-2005-2655
2005-08-30 17:03:00
openvas
openvas
Debian: Security Advisory (DSA-791-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 791-1 (maildrop)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-791-1 : maildrop - missing privilege release
2005-09-06 00:00:00
nvd
nvd
CVE-2005-2655
2005-08-30 17:03:00
cvelist
cvelist
CVE-2005-2655
2005-08-30 04:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

27.5%

JSON
Related for UB:CVE-2005-2655
debian2debiancve1cve1openvas2nessus1nvd1cvelist1