qpopper < 3.0.1b2 EIUDL Arbitrary Command Execution

Medium Nessus Network Monitor Plugin ID 1784

Synopsis

An attacker can gain an unprivileged shell on the remote system.

Description

The system is using qpopper 2.53 (or newer in the 2.5x series). There is a problem in this server that allows users who have a pop account to gain a shell with the gid 'mail' by sending to themselves a specially crafted mail.

Solution

Upgrade to version 3.0.1b2 or higher.

Plugin Details

Severity: Medium

ID: 1784

File Name: 1784.prm

Family: POP Server

Published: 2004/08/20

Modified: 2016/02/05

Dependencies: 3035

Nessus ID: 10423

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 6.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:W/RC:ND

CVSSv3

Base Score: 6.2

Temporal Score: 6

Vector: CVSS3#AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:H/RL:W/RC:X

Reference Information

CVE: CVE-2000-0320

BID: 1133