CVE-2008-4870

Опубликовано: 01 нояб. 2008

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 2.1

Описание

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.

Релиз	Статус	Примечание
dapper	ignored
devel	not-affected	1:1.1.11-0ubuntu2
gutsy	ignored	end of life, was needed
hardy	ignored
intrepid	ignored	end of life, was needed
jaunty	not-affected	1:1.1.11-0ubuntu2
karmic	not-affected	1:1.1.11-0ubuntu2
lucid	not-affected	1:1.1.11-0ubuntu2
upstream	released	1.1.7

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2008-4870

EPSS

Процентиль: 12%

0.0004

Низкий

2.1 Low

CVSS2

Связанные уязвимости

CVE-2008-4870

redhat

больше 17 лет назад

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.

CVE-2008-4870

nvd

около 17 лет назад

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.

CVE-2008-4870

debian

около 17 лет назад

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedor ...

GHSA-7hp8-2g4v-fc2h

github

больше 3 лет назад

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.

ELSA-2009-0205

oracle-oval

почти 17 лет назад

ELSA-2009-0205: dovecot security and bug fix update (LOW)

EPSS

Процентиль: 12%

0.0004

Низкий

2.1 Low

CVSS2

CVE-2008-4870

Описание

Пакет dovecot

Ссылки на источники

Связанные уязвимости