Qpopper < 4.0.6 Multiple Insecure File Handling Local Privilege Escalation

High Nessus Plugin ID 18361


The remote POP3 server is affected by multiple file handling flaws.


According to its banner, the remote host is running a version of the Qpopper POP3 server that suffers from two local, insecure file handling vulnerabilities. First, it fails to properly drop root privileges when processing certain local files, which could lead to overwriting or creation of arbitrary files as root. And second, it fails to set the process umask, potentially allowing creation of group- or world-writable files.


Upgrade to Qpopper 4.0.6 or later.

See Also


http://www.mail-archive.com/[email protected]/msg05140.html

Plugin Details

Severity: High

ID: 18361

File Name: qpopper_file_handling_vulns.nasl

Version: $Revision: 1.15 $

Type: remote

Family: Misc.

Published: 2005/05/24

Modified: 2011/03/16

Dependencies: 17975

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2005/05/23

Reference Information

CVE: CVE-2005-1151, CVE-2005-1152

BID: 13714

OSVDB: 16810, 16811