7 Jun
2000
7 Jun
'00
16:02
Dear all, At this page http://www.eudora.com/qpopper/#CURRENT . I read the things as quoted below. As Suse is still using 2.53 i would like to ask if they can please upgrade it to 3.02? Regards, Joop Boonen. Security Vulnerability Some versions of Qpopper are vulnerable to buffer overruns. Qpopper 2.41 and older can be used to obtain root access to your system. Qpopper 2.53 and older may permit an attacker who has access to a valid account to obtain a shell with group-id 'mail', potentially allowing read/write access to all mail. All users of Qpopper are urged to upgrade to the current version. Qpopper on Linux Linux users should not use versions of Qpopper older than 3.0.