Описание
dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.
Ссылки
- Broken Link
- Broken Link
- Broken Link
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
- Third Party AdvisoryVDB Entry
- Tool Signature
- Broken Link
- Broken Link
- Broken Link
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Issue TrackingThird Party Advisory
- Third Party AdvisoryVDB Entry
- Tool Signature
Уязвимые конфигурации
Одновременно
EPSS
2.1 Low
CVSS2
Дефекты
Связанные уязвимости
dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.
dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedor ...
dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.
ELSA-2009-0205: dovecot security and bug fix update (LOW)
EPSS
2.1 Low
CVSS2