Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2005-0580
Disclosure Date: February 25, 2005 (last updated February 22, 2025)
cmd5checkpw, when running setuid, does not properly drop privileges before calling the execvp function, which allows local users to read the poppasswd file.
0
Attacker Value
Unknown
CVE-2000-0990
Disclosure Date: December 19, 2000 (last updated February 22, 2025)
cmd5checkpw 0.21 and earlier allows remote attackers to cause a denial of service via an "SMTP AUTH" command with an unknown username.
0
