Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> SuSE Local Security Checks >> SUSE-SA:2003:018: qpopper


Vulnerability Assessment Details

SUSE-SA:2003:018: qpopper

Vulnerability Assessment Summary
Check for the version of the qpopper package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory SUSE-SA:2003:018 (qpopper).


The Post-Office-Protocol- (POP-) Server qpopper (version 4) was
vulnerable to a buffer overflow. The buffer overflow occurs after
authentication has taken place. Therefore pop-users with a valid
account can execute arbitrary code on the system running qpopper.
Depending on the setup, the malicious code is run with higher rights.

There is no temporary fix known, please update your system.

Please download the update package for your distribution and verify its
integrity by the methods listed in section 3) of this announcement.
Then, install the package using the command 'rpm -Fhv file.rpm' to apply
the update.

Solution : http://www.suse.de/security/2003_018_qpopper.html
Network Security Threat Level: Medium

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors


IBM System x3250 M4 Server Intel Xeon E31220/3.10Ghz RAM 16GB HDD 2TB picture

IBM System x3250 M4 Server Intel Xeon E31220/3.10Ghz RAM 16GB HDD 2TB

$60.00



IBM x3650 M3, 7945-AC1, 40GB, XEON e5507, 2.26ghz x2 with RAID Card, No HDD picture

IBM x3650 M3, 7945-AC1, 40GB, XEON e5507, 2.26ghz x2 with RAID Card, No HDD

$249.00



IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6-Core 64GB RAM No Bezel/HDD Server picture

IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6-Core 64GB RAM No Bezel/HDD Server

$239.99



IBM 8203-E4A pSeries 520 6-Bay Server System Power6 2 Core 4.2GHz 4GB No HD picture

IBM 8203-E4A pSeries 520 6-Bay Server System Power6 2 Core 4.2GHz 4GB No HD

$299.99



ibm server z series picture

ibm server z series

$16000.00



IBM System X3650 M4 7915AC1 Server INTEL XEON E5-2609 2.4GHz 8GB SEE NOTES picture

IBM System X3650 M4 7915AC1 Server INTEL XEON E5-2609 2.4GHz 8GB SEE NOTES

$72.75



42U IBM Fully Enclosed Server Rack 7014-T42-44-26-80 picture

42U IBM Fully Enclosed Server Rack 7014-T42-44-26-80

$275.00



IBM 3837-AC1 X3850 X6 CTO SERVER picture

IBM 3837-AC1 X3850 X6 CTO SERVER

$400.00



IBM System x3250 M4 Server Intel Xeon E3-1220 V2/3.10Ghz RAM 16GB HDD 1TB picture

IBM System x3250 M4 Server Intel Xeon E3-1220 V2/3.10Ghz RAM 16GB HDD 1TB

$60.00



IBM System X3650 M4 Server, 2 x Xeon E5-2609 2.4Ghz 32GB RAM, 2 x 1.2 TB HDD picture

IBM System X3650 M4 Server, 2 x Xeon E5-2609 2.4Ghz 32GB RAM, 2 x 1.2 TB HDD

$102.98



Discussions

No Discussions have been posted on this vulnerability.