Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 1.2.8 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2010-0745
Unspecified vulnerability in Dovecot 1.2.x prior to 1.2.11 allows remote malicious users to cause a denial of service (CPU consumption) via long headers in an e-mail message.
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
6.4
CVSSv2
CVE-2010-3304
The ACL plugin in Dovecot 1.2.x prior to 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote malicious users to read mailboxes that have unintended weak ACLs.
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
4
CVSSv2
CVE-2010-3780
Dovecot 1.2.x prior to 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
3.5
CVSSv2
CVE-2010-3779
Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.beta2 grants the admin permission to the owner of each mailbox in a non-public namespace, which might allow remote authenticated users to bypass intended access restrictions by changing the ACL of a mailbox, as demonstrated by ...
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 2.0
5.5
CVSSv2
CVE-2010-3706
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.2
5.5
CVSSv2
CVE-2010-3707
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.13
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
5
CVSSv2
CVE-2011-1929
lib-mail/message-header-parser.c in Dovecot 1.2.x prior to 1.2.17 and 2.0.x prior to 2.0.13 does not properly handle '\0' characters in header names, which allows remote malicious users to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-ma...
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.15
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.16
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.5
4.6
CVSSv2
CVE-2009-3897
Dovecot 1.2.x prior to 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the base_dir directory, and possibly the b...
Dovecot Dovecot
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started