CVE-2008-4578

Опубликовано: 05 окт. 2008

Источник: redhat

CVSS2: 3.5

Описание

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

Отчет

The risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 5.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=467437dovecot: bypass of the 'k' right in the ACL plugin

3.5 Low

CVSS2

Связанные уязвимости

CVE-2008-4578

ubuntu

больше 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

CVE-2008-4578

nvd

больше 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

CVE-2008-4578

debian

больше 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass inte ...

GHSA-c8mg-ww68-7qfc

github

почти 4 года назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

3.5 Low

CVSS2