CVE-2008-4577

Опубликовано: 05 окт. 2008

Источник: redhat

CVSS2: 3.6

EPSS Низкий

Описание

The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=467436dovecot: incorrect handling of negative rights in the ACL plugin

EPSS

Процентиль: 77%

0.01099

Низкий

3.6 Low

CVSS2

Связанные уязвимости

CVE-2008-4577

CVSS3: 7.5

ubuntu

около 17 лет назад

The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.

CVE-2008-4577

CVSS3: 7.5

nvd

около 17 лет назад

The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.

CVE-2008-4577

CVSS3: 7.5

debian

около 17 лет назад

The ACL plugin in Dovecot before 1.1.4 treats negative access rights a ...

GHSA-24jq-h48j-g592

CVSS3: 7.5

github

больше 3 лет назад

The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.

ELSA-2009-0205

oracle-oval

почти 17 лет назад

ELSA-2009-0205: dovecot security and bug fix update (LOW)

EPSS

Процентиль: 77%

0.01099

Низкий

3.6 Low

CVSS2