Описание
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | code not present |
| devel | released | 1:2.0.13-1ubuntu1 |
| hardy | not-affected | code not present |
| lucid | not-affected | code not present |
| maverick | not-affected | code not present |
| natty | not-affected | code not present |
| upstream | released | 2.0.13 |
Показывать по
Ссылки на источники
6.5 Medium
CVSS2
Связанные уязвимости
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user a ...
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
ELSA-2013-0520: dovecot security and bug fix update (LOW)
6.5 Medium
CVSS2