Description
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
Affected products
- qualcomm / qpopper2.52 – 2.52
- qualcomm / qpopper2.53 – 2.53
- sun / cobalt_raq_2
- sun / cobalt_raq_3i