Filtered by vendor Maildrop Subscriptions
Filtered by product Maildrop Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2010-0301 1 Maildrop 1 Maildrop 2024-11-21 N/A
main.C in maildrop 2.3.0 and earlier, when run by root with the -d option, uses the gid of root for execution of the .mailfilter file in a user's home directory, which allows local users to gain privileges via a crafted file.
CVE-2005-2655 1 Maildrop 1 Maildrop 2024-11-21 N/A
lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.