Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 1.0.beta3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2414
Directory traversal vulnerability in Dovecot 1.0 beta and 1.0 allows remote malicious users to list files and directories under the mbox parent directory and obtain mailbox names via ".." sequences in the (1) LIST or (2) DELETE IMAP command.
Timo Sirainen Dovecot 1.0 Beta7
Timo Sirainen Dovecot 1.0 Beta2
Timo Sirainen Dovecot 1.0
Timo Sirainen Dovecot 1.0 Beta3
NA
CVE-2008-1199
Dovecot prior to 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a symlink attack.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.0
Dovecot Dovecot 1.0.rc15
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.rc14
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 0.99.14
Dovecot Dovecot 1.0.beta8
Dovecot Dovecot 1.0.beta3
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.0.rc9
Dovecot Dovecot 1.0.rc13
Dovecot Dovecot 1.0.8
Dovecot Dovecot 1.0.rc11
Dovecot Dovecot 1.0.4
Dovecot Dovecot 1.0.rc6
Dovecot Dovecot 1.0.rc3
NA
CVE-2007-2231
Directory traversal vulnerability in index/mbox/mbox-storage.c in Dovecot prior to 1.0.rc29, when using the zlib plugin, allows remote malicious users to read arbitrary gzipped (.gz) mailboxes (mbox files) via a .. (dot dot) sequence in the mailbox name.
Dovecot Dovecot 1.0.rc20
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.beta5
Dovecot Dovecot 1.0.rc15
Dovecot Dovecot 1.0.rc19
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.beta4
Dovecot Dovecot 1.0.rc14
Dovecot Dovecot 1.0.beta6
Dovecot Dovecot 1.0.beta9
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.rc25
Dovecot Dovecot 1.0.beta8
Dovecot Dovecot 1.0.beta3
Dovecot Dovecot 1.0.rc16
Dovecot Dovecot 1.0.rc9
Dovecot Dovecot 1.0.rc27
Dovecot Dovecot 1.0.beta1
Dovecot Dovecot 1.0.rc13
Dovecot Dovecot 1.0.rc11
Dovecot Dovecot 1.0.rc6
NA
CVE-2008-4578
The ACL plugin in Dovecot prior to 1.1.4 allows malicious users to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.0.rc20
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.0.beta5
Dovecot Dovecot 1.0
Dovecot Dovecot 1.0.rc15
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.rc19
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.beta4
Dovecot Dovecot
Dovecot Dovecot 1.0.12
Dovecot Dovecot 1.0.rc14
Dovecot Dovecot 1.0.beta6
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.0.beta9
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 1.0.rc25
NA
CVE-2006-5973
Off-by-one buffer overflow in Dovecot 1.0test53 up to and including 1.0.rc14, and possibly other versions, when index files are used and mmap_disable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service (crash) via unspecified vec...
Timo Sirainen Dovecot 1.0.test66
Timo Sirainen Dovecot 1.0.test58
Timo Sirainen Dovecot 1.0.rc10
Timo Sirainen Dovecot 1.0.alpha5
Timo Sirainen Dovecot 1.0.test67
Timo Sirainen Dovecot 1.0.test72
Timo Sirainen Dovecot 1.0.test64
Timo Sirainen Dovecot 1.0.test78
Timo Sirainen Dovecot 1.0.rc13
Timo Sirainen Dovecot 1.0
Timo Sirainen Dovecot 1.0.test61
Timo Sirainen Dovecot 1.0.rc4
Timo Sirainen Dovecot 1.0.test75
Timo Sirainen Dovecot 1.0.rc7
Timo Sirainen Dovecot 1.0.beta5
Timo Sirainen Dovecot 1.0.beta8
Timo Sirainen Dovecot 1.0.beta1
Timo Sirainen Dovecot 1.0.rc6
Timo Sirainen Dovecot 1.0.beta2
Timo Sirainen Dovecot 1.0.beta7
Timo Sirainen Dovecot 1.0.test80
Timo Sirainen Dovecot 1.0.test62
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started