Lucene search
RedhatCVELIST:CVE-2010-3706HistoryOct 06, 2010 - 4:00 p.m.
CVE-2010-3706
2010-10-0616:00:00
redhat
raw.githubusercontent.com
1
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circumstances involving the private namespace of a user, which allows remote authenticated users to bypass intended access restrictions via a request to read or modify a mailbox.
Related
ubuntucve
ubuntucve
CVE-2010-3706
2010-10-06 00:00:00
prion
prion
Cross site request forgery (csrf)
2010-10-06 17:00:00
cve
cve
CVE-2010-3706
2010-10-06 17:00:17
debiancve
debiancve
CVE-2010-3706
2010-10-06 17:00:17
nessus
nessus
openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0923-1)
2010-10-30 00:00:00
openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0923-1)
2014-06-13 00:00:00
Ubuntu 10.04 LTS / 10.10 : dovecot vulnerabilities (USN-1059-1)
2011-02-08 00:00:00
debian
debian
BSA-006 Security Update for dovecot
2010-10-12 21:45:52
BSA-006 Security Update for dovecot
2010-10-13 09:56:59
securityvulns
securityvulns
[ MDVSA-2010:217 ] dovecot
2010-11-02 00:00:00
Dovecot multiple security vulnerabilities
2010-11-02 00:00:00
ubuntu
ubuntu
Dovecot vulnerabilities
2011-02-07 00:00:00
openvas
openvas
Mandriva Update for dovecot MDVSA-2010:217 (dovecot)
2010-11-16 00:00:00
Mandriva Update for dovecot MDVSA-2010:217 (dovecot)
2010-11-16 00:00:00
Ubuntu: Security Advisory (USN-1059-1)
2011-02-11 00:00:00
gentoo
gentoo
Dovecot: Multiple vulnerabilities
2011-10-10 00:00:00