CVE-2005-2655

High

10/10

Summary

lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Aug 30, 2005

CVE-2005-2655

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS