RSS   Vulnerabilities for 'Cmd5checkpw'   RSS

2005-02-25
 
CVE-2005-0580

 
 
cmd5checkpw, when running setuid, does not properly drop privileges before calling the execvp function, which allows local users to read the poppasswd file.

 
2000-12-19
 
CVE-2000-0990

 
 
cmd5checkpw 0.21 and earlier allows remote attackers to cause a denial of service via an "SMTP AUTH" command with an unknown username.

 

Copyright 2024, cxsecurity.com

 

Back to Top