Dovecot prior to 1.0.11, when configured to use mail_extra_groups to allow Dovecot to create dotlocks in /var/mail, might allow local users to read sensitive mail files for other users, or modify files or directories that are writable by group, via a symlink attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dovecot dovecot 1.0.4 |
||
dovecot dovecot 1.0.5 |
||
dovecot dovecot 1.0.beta7 |
||
dovecot dovecot 1.0.beta8 |
||
dovecot dovecot 1.0.rc2 |
||
dovecot dovecot 1.0.rc3 |
||
dovecot dovecot 1.0_rc29 |
||
dovecot dovecot 1.0 |
||
dovecot dovecot 1.0.10 |
||
dovecot dovecot 1.0.8 |
||
dovecot dovecot 1.0.9 |
||
dovecot dovecot 1.0.rc11 |
||
dovecot dovecot 1.0.rc12 |
||
dovecot dovecot 1.0.rc13 |
||
dovecot dovecot 1.0.rc6 |
||
dovecot dovecot 1.0.rc7 |
||
dovecot dovecot 0.99.13 |
||
dovecot dovecot 0.99.14 |
||
dovecot dovecot 1.0.6 |
||
dovecot dovecot 1.0.7 |
||
dovecot dovecot 1.0.rc1 |
||
dovecot dovecot 1.0.rc10 |
||
dovecot dovecot 1.0.rc4 |
||
dovecot dovecot 1.0.rc5 |
||
dovecot dovecot 1.0.2 |
||
dovecot dovecot 1.0.3 |
||
dovecot dovecot 1.0.beta2 |
||
dovecot dovecot 1.0.beta3 |
||
dovecot dovecot 1.0.rc14 |
||
dovecot dovecot 1.0.rc15 |
||
dovecot dovecot 1.0.rc8 |
||
dovecot dovecot 1.0.rc9 |