qpopper 4.0.5 and previous versions does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian qpopper 4.0.5 |
||
debian qpopper |