threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qualcomm qpopper
Product
qualcomm qpopper
16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2005-3098
all versions
poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) comman
CVE-2005-1152
<= 4.0.4
popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or worl
CVE-2005-1151
<= 4.0.4
qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local user
CVE-2003-1452
all versions
Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying
CVE-2003-0143
all versions
The pop_msg function in qpopper 4.0.x before 4.0.5fc2 does not null terminate a message buffer after a call to Qvsnprintf, which c
CVE-2002-0889
all versions
Buffer overflow in Qpopper (popper) 4.0.4 and earlier allows local users to cause a denial of service and possibly execute arbitra
CVE-2002-0454
all versions
Qpopper (aka in.qpopper or popper) 4.0.3 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a
CVE-2001-1487
<= 4.0
popauth utility in Qualcomm Qpopper 4.0 and earlier allows local users to overwrite arbitrary files and execute commands as the po
CVE-2001-1068
all versions
qpopper 4.01 with PAM based authentication on Red Hat systems generates different error messages when an invalid username is provi
CVE-2000-1198
all versions
qpopper POP server creates lock files with predictable names, which allows local users to cause a denial of service for other user
5.5
MEDIUM
CVE-2001-1046
all versions
Buffer overflow in qpopper (aka qpop or popper) 4.0 through 4.0.2 allows remote attackers to gain privileges via a long username.
CVE-2000-0442
all versions
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by
CVE-2000-0320
all versions
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote atta
CVE-2000-0096
all versions
Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command.
CVE-1999-0822
all versions
Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command.
CVE-1999-0006
all versions
Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS comma
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin