Detections
Analytics

Qpopper < 4.0.6 Multiple Insecure File Handling Local Privilege Escalation

high Nessus Plugin ID 18361

Language:

Synopsis

The remote POP3 server is affected by multiple file handling flaws.

Description

According to its banner, the remote host is running a version of the Qpopper POP3 server that suffers from two local, insecure file handling vulnerabilities. First, it fails to properly drop root privileges when processing certain local files, which could lead to overwriting or creation of arbitrary files as root. And second, it fails to set the process umask, potentially allowing creation of group- or world-writable files.

Solution

Upgrade to Qpopper 4.0.6 or later.

See Also

https://bugs.gentoo.org/show_bug.cgi?id=90622

https://www.mail-archive.com/[email protected]/msg05140.html

Plugin Details

Severity: High

ID: 18361

File Name: qpopper_file_handling_vulns.nasl

Version: 1.17

Type: remote

Family: Misc.

Published: 5/24/2005

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 5/23/2005

Reference Information

CVE: CVE-2005-1151, CVE-2005-1152

BID: 13714