Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 1.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-3235
Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, as derived from Cyrus libsieve, allow context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SIEVE scr...
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.1.4
Dovecot Dovecot 1.0
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.1
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.1.6
Dovecot Dovecot 1.1.1
Dovecot Dovecot 1.1.0
Dovecot Dovecot 1.1.3
4.4
CVSSv2
CVE-2009-2632
Buffer overflow in the SIEVE script component (sieve/script.c), as used in cyrus-imapd in Cyrus IMAP Server 2.2.13 and 2.3.14, and Dovecot 1.0 prior to 1.0.4 and 1.1 prior to 1.1.7, allows local users to execute arbitrary code and read or modify arbitrary messages via a crafted S...
Cmu Cyrus Imap Server 2.3.14
Cmu Cyrus Imap Server 2.2.13
6.4
CVSSv2
CVE-2008-5301
Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote malicious users to read and modify arbitrary .sieve files via a ".." (dot dot) in a script name.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.1.4
Dovecot Dovecot 1.0
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.12
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 0.99.14
Dovecot Dovecot 1.0.3
Dovecot Dovecot 1.0.8
Dovecot Dovecot 1.0.4
Dovecot Dovecot 1.0.10
Dovecot Dovecot 1.0.9
Dovecot Dovecot 0.99.13
Dovecot Dovecot 1.1.1
Dovecot Dovecot 1.1.0
Dovecot Dovecot 1.1.3
4.3
CVSSv2
CVE-2008-4907
The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote malicious users to cause a denial of service (persistent crash) via an email with a malformed From address, which triggers an assertion error, aka "...
Dovecot Dovecot 1.1.5
Dovecot Dovecot 1.1.4
1 EDB exploit
5
CVSSv2
CVE-2008-4578
The ACL plugin in Dovecot prior to 1.1.4 allows malicious users to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.
Dovecot Dovecot 1.0.6
Dovecot Dovecot 1.0.rc20
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.5
Dovecot Dovecot 1.0.beta5
Dovecot Dovecot 1.0
Dovecot Dovecot 1.0.rc15
Dovecot Dovecot 1.1
Dovecot Dovecot 1.0.rc19
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.beta4
Dovecot Dovecot
Dovecot Dovecot 1.0.12
Dovecot Dovecot 1.0.rc14
Dovecot Dovecot 1.0.beta6
Dovecot Dovecot 1.0.2
Dovecot Dovecot 1.0.beta9
Dovecot Dovecot 1.1.2
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.7
Dovecot Dovecot 1.0.rc25
6.8
CVSSv2
CVE-2008-1218
Argument injection vulnerability in Dovecot 1.0.x prior to 1.0.13, and 1.1.x prior to 1.1.rc3, when using blocking passdbs, allows remote malicious users to bypass the password check via a password containing TAB characters, which are treated as argument delimiters that enable th...
Dovecot Dovecot
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started