Vulnerabilities > CVE-2003-1452 - Configuration vulnerability in Qualcomm Qpopper
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 8 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Qpopper 4.0.x poppassd Local Root Exploit. CVE-2003-1452. Local exploit for linux platform |
| id | EDB-ID:21 |
| last seen | 2016-01-31 |
| modified | 2003-04-29 |
| published | 2003-04-29 |
| reporter | Xpl017Elz |
| source | https://www.exploit-db.com/download/21/ |
| title | Qpopper 4.0.x - poppassd Local Root Exploit |
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0047.html
- http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0047.html
- http://securityreason.com/securityalert/3268
- http://securityreason.com/securityalert/3268
- http://www.securityfocus.com/archive/1/319811
- http://www.securityfocus.com/archive/1/319811
- http://www.securityfocus.com/bid/7447
- http://www.securityfocus.com/bid/7447
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11877
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11877