10

CVE-2005-2655

lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MaildropMaildrop Version0.50
MaildropMaildrop Version0.51
MaildropMaildrop Version0.51b
MaildropMaildrop Version0.51c
MaildropMaildrop Version0.54
MaildropMaildrop Version0.54a
MaildropMaildrop Version0.54b
MaildropMaildrop Version0.55
MaildropMaildrop Version0.55a
MaildropMaildrop Version0.55b
MaildropMaildrop Version0.55c
MaildropMaildrop Version0.60
MaildropMaildrop Version0.61
MaildropMaildrop Version0.62
MaildropMaildrop Version0.63
MaildropMaildrop Version0.64
MaildropMaildrop Version0.65
MaildropMaildrop Version0.70
MaildropMaildrop Version0.71
MaildropMaildrop Version0.72
MaildropMaildrop Version0.73
MaildropMaildrop Version0.74
MaildropMaildrop Version0.75
MaildropMaildrop Version0.76
MaildropMaildrop Version0.99.1
MaildropMaildrop Version0.99.2
MaildropMaildrop Version1.0
MaildropMaildrop Version1.1
MaildropMaildrop Version1.2
MaildropMaildrop Version1.2.1
MaildropMaildrop Version1.2.2
MaildropMaildrop Version1.3.0
MaildropMaildrop Version1.3.1
MaildropMaildrop Version1.3.3
MaildropMaildrop Version1.3.4
MaildropMaildrop Version1.3.5
MaildropMaildrop Version1.3.6
MaildropMaildrop Version1.3.7
MaildropMaildrop Version1.3.8
MaildropMaildrop Version1.3.9
MaildropMaildrop Version1.4.0
MaildropMaildrop Version1.5.0
MaildropMaildrop Version1.5.1
MaildropMaildrop Version1.5.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.4% 0.575
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.