Max CVSS | 5.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2008-4870 | 2.1 |
dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.
|
03-02-2022 - 19:58 | 01-11-2008 - 00:00 | |
CVE-2008-1199 | 4.4 |
Dovecot before 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a s
|
11-10-2018 - 20:30 | 06-03-2008 - 21:44 | |
CVE-2011-1929 | 5.0 |
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a cr
|
17-08-2017 - 01:34 | 24-05-2011 - 23:55 |