vendor:
qpopper, imap-4, imap-uw
by:
SecurityFocus
4.3
CVSS
MEDIUM
Lock File Creation
264
CWE
Product Name: qpopper, imap-4, imap-uw
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac, FreeBSD
2002
Lock File Creation Vulnerability in POP3 Daemon
A vulnerability exists in a number of pop3 daemon implementations, having to do with their creation of lock files. Affected include Qualcomm's qpopper, and the popd included as part of the imap-4 rpm from RedHat. Lockfiles in both implementation are created with consistent local file names; the RedHat popd in /tmp, with a fairly random name (albeit consistent for a given user), and in the mail spool directory, with the user name prepended by a "." and appended with ".pop". Creation of either of these files will prevent the popd user from being able to establish a connection to retrieve their mail. The FreeBSD port of imap-uw contains this vulnerability. It is not, however, included as a standard part of a FreeBSD install.
Mitigation:
Ensure that the pop3 daemon is running with the least privileges necessary.
