Qpopper contains a buffer overflow that could allow root access
| qpopper-command-bo (1889) |  High Risk |
Description:
Qpopper is vulnerable to a buffer overflow in the daemon. By sending the daemon an excessively long command, a remote attacker can overflow the buffer to execute arbitrary commands and gain root privileges on the system.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of Qpopper (3.0.2 or later), available from the Qpopper Web site. See References.
For SCO Unix:
Apply System Security Enhancement patch SSE013, as listed in CERT Advisory CA-98.08. The SSE patch is available from the SCO Security Web page. See References.
References:
- AusCERT Advisory AA-98.01: qpopper Buffer Overrun Vulnerability.
- BugTraq Mailing List, Sat, 27 Jun 1998 00:58:24 -0400: !!! FLASH TRAFFIC !!! QPOPPER REMOTE ROOT EXPLOIT.
- CERT Advisory CA-1998-08: Buffer overflows in some POP servers.
- CIAC Information Bulletin I-069: Buffer overflows in some POP servers.
- Qualcomm Web site: Qpopper Home Page.
- SCO Security Web site: Security Fixes.
- SGI Security Advisory 19980801-01-I: BSD/Qualcomm qpopper Vulnerability.
- BID-133: Qualcomm POP Server Buffer Overflow Vulnerability
Platforms Affected:
- Qualcomm Qpopper
- SCO OpenServer
- SCO SCO Internet FastStart
Reported:
Jun 27, 1998
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net