Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 1.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3235
Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, as derived from Cyrus libsieve, allow context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SIEVE scr...
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.1.4
Dovecot Dovecot 1.0
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.1
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.1.6
Dovecot Dovecot 1.1.1
Dovecot Dovecot 1.1.0
Dovecot Dovecot 1.1.3
NA
CVE-2009-2632
Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted S...
Cmu Cyrus Imap Server 2.3.14
Cmu Cyrus Imap Server 2.2.13
NA
CVE-2008-5301
Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote malicious users to read and modify arbitrary .sieve files via a ".." (dot dot) in a script name.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.1.4
Dovecot Dovecot 1.0
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.12
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 0.99.14
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.0.8
Dovecot Dovecot 1.0.4
Dovecot Dovecot 1.0.10
Dovecot Dovecot 1.0.9
Dovecot Dovecot 0.99.13
Dovecot Dovecot 1.1.1
Dovecot Dovecot 1.1.0
Dovecot Dovecot 1.1.3
NA
CVE-2008-4907
The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote malicious users to cause a denial of service (persistent crash) via an email with a malformed From address, which triggers an assertion error, aka "...
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.1.4
1 EDB exploit
NA
CVE-2008-4578
The ACL plugin in Dovecot prior to 1.1.4 allows malicious users to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.0.rc20
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.0.beta5
Dovecot Dovecot 1.0
Dovecot Dovecot 1.0.rc15
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.rc19
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.beta4
Dovecot Dovecot
Dovecot Dovecot 1.0.12
Dovecot Dovecot 1.0.rc14
Dovecot Dovecot 1.0.beta6
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.0.beta9
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 1.0.rc25
NA
CVE-2008-1218
Argument injection vulnerability in Dovecot 1.0.x prior to 1.0.13, and 1.1.x prior to 1.1.rc3, when using blocking passdbs, allows remote malicious users to bypass the password check via a password containing TAB characters, which are treated as argument delimiters that enable th...
Dovecot Dovecot
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started