Max CVSS 6.5 Min CVSS 5.8 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2011-2167 6.5
script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot configuration setting, which might allow remote authenticated users to conduct directory traversal attacks by leveraging a script.
29-08-2017 - 01:29 24-05-2011 - 23:55
CVE-2011-2166 6.5
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
29-08-2017 - 01:29 24-05-2011 - 23:55
CVE-2011-4318 5.8
Dovecot 2.0.x before 2.0.16, when ssl or starttls is enabled and hostname is used to define the proxy destination, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) of the X.509 certificate, which allows
07-03-2013 - 05:00 07-03-2013 - 01:55
Back to Top Mark selected
Back to Top