CVE-1999-0822

Qpopper 3.0 - Unauthenticated Buffer Overflow via AUTH Command

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0822. PoCs published by Synnergy Networks, Mixter.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Qualcomm QPOP 3.0b<=20 by sending a crafted AUTH command with NOP sleds, shellcode, and a manipulated return address to achieve remote code execution. The shellcode spawns a /bin/sh shell, and the exploit is designed to be piped into netcat for delivery.

Description

Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Synnergy Networks · perlremoteunix

https://www.exploit-db.com/exploits/19646

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Qualcomm QPOP 3.0b<=20 by sending a crafted AUTH command with NOP sleds, shellcode, and a manipulated return address to achieve remote code execution. The shellcode spawns a /bin/sh shell, and the exploit is designed to be piped into netcat for delivery.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Qualcomm QPOP 3.0b<=20

No auth needed

Prerequisites: Network access to the target's POP3 service (port 110) · Target must be running a vulnerable version of QPOP

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Mixter · cremoteunix

https://www.exploit-db.com/exploits/19645

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Qpopper 3.0b (CVE-1999-0822) by sending a crafted AUTH command with NOP sleds and shellcode to achieve remote code execution as root. The exploit is designed for x86 Linux systems and includes a return address override to redirect execution to the shellcode.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Qpopper 3.0b

No auth needed

Prerequisites: Network access to the target's POP3 service (port 110) · Target must be running Qpopper 3.0b on x86 Linux

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/830

Scores

EPSS 0.0490

EPSS Percentile 91.0%

Details

Status published

Products (2)

qualcomm/qpopper 3.0

qualcomm/qpopper 3.0b20

Published Nov 30, 1999

Tracked Since Feb 18, 2026