Improper umask setting in qpopper 4.0.5 and earlier allows for group/world-writable file creation

Improper umask setting in qpopper 4.0.5 and earlier allows for group/world-writable file creation

CVE-2005-1152 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions.

Learn more about our Web Application Penetration Testing UK.