The ACL plugin in Dovecot 1.2.x prior to 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote malicious users to read mailboxes that have unintended weak ACLs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dovecot dovecot 1.2.2 |
||
dovecot dovecot 1.2.3 |
||
dovecot dovecot 1.2.12 |
||
dovecot dovecot 1.2.10 |
||
dovecot dovecot 1.2.11 |
||
dovecot dovecot 1.2.8 |
||
dovecot dovecot 1.2.9 |
||
dovecot dovecot 1.2.4 |
||
dovecot dovecot 1.2.5 |
||
dovecot dovecot 1.2.0 |
||
dovecot dovecot 1.2.1 |
||
dovecot dovecot 1.2.6 |
||
dovecot dovecot 1.2.7 |