Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in POP servers based on BSD/Qualcomm's qpopper allows remote attackers to gain root access using a long PASS command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Qualcomm QPopper多个命令远程缓冲区溢出漏洞
Vulnerability Description
QPopper是一款由Qualcomm开发和维护免费开放源代码的软件,可使用在多种Linux和Unix操作系统下。 2.5版本以前的qpopper存在许多缓冲区溢出漏洞,远程攻击者可以利用这些漏洞通过溢出攻击在受影响主机执行任意指令。 漏洞存在于qpopper没有正确检查过滤用户输入的POP命令(包括USER、PASS),如果参数超过1024字节就会产生缓冲区溢出。这个漏洞在Bugtraq被广泛的讨论,已经有基于Linux和*BSD系统的攻击程序。 确认主机是否受影响,可以使用下面的命令: % telne
CVSS Information
N/A
Vulnerability Type
N/A