Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2003-1452

Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.

  • Published: Dec 31, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-1452
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 3.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
qualcomm / qpopper 4.0.1 4.0.1.x
qualcomm / qpopper 4.0.5_fc2 4.0.5_fc2.x
qualcomm / qpopper 4.0.4 4.0.4.x
qualcomm / qpopper 4.0.3 4.0.3.x
qualcomm / qpopper 4.0_b14 4.0_b14.x
qualcomm / qpopper 4.0.5 4.0.5.x
qualcomm / qpopper 4.0 4.0.x
qualcomm / qpopper 4.0.2 4.0.2.x