Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-6598HistoryJan 04, 2008 - 2:46 a.m.
CVE-2007-6598
2008-01-0402:46:00
Debian Security Bug Tracker
security-tracker.debian.org
6
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.3%
Dovecot before 1.0.10, with certain configuration options including use of %variables, does not properly maintain the LDAP+auth cache, which might allow remote authenticated users to login as a different user who has the same password.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | dovecot | < 1:1.0.10-1 | dovecot_1:1.0.10-1_all.deb |
| Debian | 11 | all | dovecot | < 1:1.0.10-1 | dovecot_1:1.0.10-1_all.deb |
| Debian | 10 | all | dovecot | < 1:1.0.10-1 | dovecot_1:1.0.10-1_all.deb |
| Debian | 999 | all | dovecot | < 1:1.0.10-1 | dovecot_1:1.0.10-1_all.deb |
| Debian | 13 | all | dovecot | < 1:1.0.10-1 | dovecot_1:1.0.10-1_all.deb |
Related
openvas
openvas
Ubuntu Update for dovecot vulnerability USN-567-1
2009-03-23 00:00:00
Debian Security Advisory DSA 1457-1 (dovecot)
2008-01-31 00:00:00
Debian: Security Advisory (DSA-1457-1)
2008-01-31 00:00:00
osv
osv
dovecot
2008-01-09 00:00:00
ubuntucve
ubuntucve
CVE-2007-6598
2008-01-04 00:00:00
nessus
nessus
Debian DSA-1457-1 : dovecot - programming error
2008-01-10 00:00:00
Ubuntu 7.04 / 7.10 : dovecot vulnerability (USN-567-1)
2008-01-14 00:00:00
openSUSE 10 Security Update : dovecot (dovecot-5647)
2008-10-01 00:00:00
ubuntu
ubuntu
Dovecot vulnerability
2008-01-10 00:00:00
securityvulns
securityvulns
Dovecot password caching vulnerability
2008-01-04 00:00:00
prion
prion
Design/Logic Flaw
2008-01-04 02:46:00
cve
cve
CVE-2007-6598
2008-01-04 02:46:00
veracode
veracode
Authentication Bypass
2020-04-10 00:29:12
debian
debian
[SECURITY] [DSA 1457-1] New dovecot packages fix information disclosure
2008-01-09 22:15:23
redhat
redhat
(RHSA-2008:0297) Low: dovecot security and bug fix update
2008-05-20 00:00:00
oraclelinux
oraclelinux
dovecot security and bug fix update
2008-05-30 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.3%
Related for DEBIANCVE:CVE-2007-6598