Untrusted search path vulnerability in Qualcomm qpopper 4.0 up to and including 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qualcomm qpopper 4.0 |
||
qualcomm qpopper 4.0_b14 |
||
qualcomm qpopper 4.0.5 |
||
qualcomm qpopper 4.0.5_fc2 |
||
qualcomm qpopper 4.0.1 |
||
qualcomm qpopper 4.0.2 |
||
qualcomm qpopper 4.0.3 |
||
qualcomm qpopper 4.0.4 |