Vulnerabilities > CVE-2001-1487 - Local Security vulnerability in qpopper
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
popauth utility in Qualcomm Qpopper 4.0 and earlier allows local users to overwrite arbitrary files and execute commands as the pop user via a symlink attack on the -trace file option.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | QPopper 4.0.x PopAuth Trace File Shell Command Execution Vulnerability. CVE-2001-1487. Remote exploit for unix platform |
id | EDB-ID:21185 |
last seen | 2016-02-02 |
modified | 2001-12-18 |
published | 2001-12-18 |
reporter | IhaQueR |
source | https://www.exploit-db.com/download/21185/ |
title | QPopper 4.0.x PopAuth Trace File Shell Command Execution Vulnerability |