Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 1.2.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2010-0745
Unspecified vulnerability in Dovecot 1.2.x prior to 1.2.11 allows remote malicious users to cause a denial of service (CPU consumption) via long headers in an e-mail message.
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
6.4
CVSSv2
CVE-2010-3304
The ACL plugin in Dovecot 1.2.x prior to 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote malicious users to read mailboxes that have unintended weak ACLs.
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
4
CVSSv2
CVE-2010-3780
Dovecot 1.2.x prior to 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
3.5
CVSSv2
CVE-2010-3779
Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.beta2 grants the admin permission to the owner of each mailbox in a non-public namespace, which might allow remote authenticated users to bypass intended access restrictions by changing the ACL of a mailbox, as demonstrated by ...
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 2.0
5.5
CVSSv2
CVE-2010-3706
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.2
5.5
CVSSv2
CVE-2010-3707
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.13
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
5
CVSSv2
CVE-2011-1929
lib-mail/message-header-parser.c in Dovecot 1.2.x prior to 1.2.17 and 2.0.x prior to 2.0.13 does not properly handle '\0' characters in header names, which allows remote malicious users to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-ma...
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.15
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.16
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.5
7.5
CVSSv2
CVE-2009-3235
Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, as derived from Cyrus libsieve, allow context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SIEVE scr...
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.1.6
Dovecot Dovecot 1.0.1
Dovecot Dovecot 1.1.1
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.1
Dovecot Dovecot 1.1.0
Dovecot Dovecot 1.0
Dovecot Dovecot 1.1.3
Dovecot Dovecot 1.1.4
4.4
CVSSv2
CVE-2009-2632
Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted S...
Cmu Cyrus Imap Server 2.2.13
Cmu Cyrus Imap Server 2.3.14
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started