CVE-2008-4578

Опубликовано: 05 окт. 2008

Источник: redhat

CVSS2: 3.5

EPSS Низкий

Описание

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

Отчет

The risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 5.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=467437dovecot: bypass of the 'k' right in the ACL plugin

EPSS

Процентиль: 72%

0.00762

Низкий

3.5 Low

CVSS2

Связанные уязвимости

CVE-2008-4578

ubuntu

почти 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

CVE-2008-4578

nvd

почти 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

CVE-2008-4578

debian

почти 17 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass inte ...

GHSA-c8mg-ww68-7qfc

github

больше 3 лет назад

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

EPSS

Процентиль: 72%

0.00762

Низкий

3.5 Low

CVSS2