CVE-2005-2655: lockmail in maildrop before 1.5.3 does not drop privileges before exec ...

Severity: Critical

CVSS Score: 10

lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.