Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dovecot dovecot 2.0.2 vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2011-2166
script-login in Dovecot 2.0.x prior to 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
Dovecot Dovecot 2.0.9
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.7
Dovecot Dovecot 2.0.8
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.10
Dovecot Dovecot 2.0.5
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.6
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
578
VMScore
CVE-2011-2167
script-login in Dovecot 2.0.x prior to 2.0.13 does not follow the chroot configuration setting, which might allow remote authenticated users to conduct directory traversal attacks by leveraging a script.
Dovecot Dovecot 2.0.10
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.9
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.5
Dovecot Dovecot 2.0.6
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.7
Dovecot Dovecot 2.0.8
Dovecot Dovecot 2.0.12
516
VMScore
CVE-2011-4318
Dovecot 2.0.x prior to 2.0.16, when ssl or starttls is enabled and hostname is used to define the proxy destination, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) of the X.509 certificate, which allows man-in-the-middle mali...
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.5
Dovecot Dovecot 2.0.6
Dovecot Dovecot 2.0.7
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.8
Dovecot Dovecot 2.0.10
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.9
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.13
Dovecot Dovecot 2.0.14
Dovecot Dovecot 2.0.15
490
VMScore
CVE-2010-3706
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.2
490
VMScore
CVE-2010-3707
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.13
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
445
VMScore
CVE-2011-1929
lib-mail/message-header-parser.c in Dovecot 1.2.x prior to 1.2.17 and 2.0.x prior to 2.0.13 does not properly handle '\0' characters in header names, which allows remote malicious users to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-ma...
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.15
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.16
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.11
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.5
516
VMScore
CVE-2013-6171
checkpassword-reply in Dovecot prior to 2.2.7 performs setuid operations to a user who is authenticating, which allows local users to bypass authentication and access virtual email accounts by attaching to the process and using a restricted file descriptor to modify account infor...
Dovecot Dovecot 2.0.12
Dovecot Dovecot 2.0.13
Dovecot Dovecot 2.0.6
Dovecot Dovecot 2.0.7
Dovecot Dovecot 2.1
Dovecot Dovecot 2.1.0
Dovecot Dovecot 2.1.15
Dovecot Dovecot 2.1.2
Dovecot Dovecot 2.2.5
Dovecot Dovecot 2.2.4
Dovecot Dovecot 2.2
Dovecot Dovecot 2.0
Dovecot Dovecot 2.0.14
Dovecot Dovecot 2.0.15
Dovecot Dovecot 2.0.8
Dovecot Dovecot 2.0.9
Dovecot Dovecot 2.1.1
Dovecot Dovecot 2.1.10
Dovecot Dovecot 2.1.3
Dovecot Dovecot 2.1.4
Dovecot Dovecot 2.2.3
Dovecot Dovecot 2.2.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started