CVE-2003-1452

Name of the Vulnerable Software and Affected Versions Qualcomm qpopper versions 4.0 through 4.05

Description The issue allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program. This is due to an untrusted search path vulnerability.

Recommendations For versions 4.0 through 4.05, consider restricting access to the PATH environment variable to prevent modification and minimize the risk of exploitation. As a temporary workaround, avoid using the smbpasswd program until a patch is available.