Lucene search

K
nvd[email protected]NVD:CVE-2014-3430
HistoryMay 14, 2014 - 7:55 p.m.

CVE-2014-3430

2014-05-1419:55:13
CWE-287
web.nvd.nist.gov
7

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.5

Confidence

High

EPSS

0.091

Percentile

94.7%

Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.

Affected configurations

Nvd
Node
dovecotdovecotMatch1.1
OR
dovecotdovecotMatch1.1rc2
OR
dovecotdovecotMatch1.1.0
OR
dovecotdovecotMatch1.1.1
OR
dovecotdovecotMatch1.1.2
OR
dovecotdovecotMatch1.1.3
OR
dovecotdovecotMatch1.1.4
OR
dovecotdovecotMatch1.1.5
OR
dovecotdovecotMatch1.1.6
OR
dovecotdovecotMatch1.2.0
OR
dovecotdovecotMatch1.2.1
OR
dovecotdovecotMatch1.2.2
OR
dovecotdovecotMatch1.2.3
OR
dovecotdovecotMatch1.2.4
OR
dovecotdovecotMatch1.2.5
OR
dovecotdovecotMatch1.2.6
OR
dovecotdovecotMatch1.2.7
OR
dovecotdovecotMatch1.2.8
OR
dovecotdovecotMatch1.2.9
OR
dovecotdovecotMatch1.2.10
OR
dovecotdovecotMatch1.2.11
OR
dovecotdovecotMatch1.2.12
OR
dovecotdovecotMatch1.2.13
OR
dovecotdovecotMatch1.2.14
OR
dovecotdovecotMatch1.2.15
OR
dovecotdovecotMatch2.0beta1
OR
dovecotdovecotMatch2.0.0
OR
dovecotdovecotMatch2.0.1
OR
dovecotdovecotMatch2.0.2
OR
dovecotdovecotMatch2.0.3
OR
dovecotdovecotMatch2.0.4
OR
dovecotdovecotMatch2.0.5
OR
dovecotdovecotMatch2.0.6
OR
dovecotdovecotMatch2.0.7
OR
dovecotdovecotMatch2.0.8
OR
dovecotdovecotMatch2.0.9
OR
dovecotdovecotMatch2.0.10
OR
dovecotdovecotMatch2.0.11
OR
dovecotdovecotMatch2.0.12
OR
dovecotdovecotMatch2.0.13
OR
dovecotdovecotMatch2.0.14
OR
dovecotdovecotMatch2.0.15
OR
dovecotdovecotMatch2.1rc1
OR
dovecotdovecotMatch2.1rc2
OR
dovecotdovecotMatch2.1rc3
OR
dovecotdovecotMatch2.1rc5
OR
dovecotdovecotMatch2.1rc6
OR
dovecotdovecotMatch2.1rc7
OR
dovecotdovecotMatch2.1.0
OR
dovecotdovecotMatch2.1.1
OR
dovecotdovecotMatch2.1.2
OR
dovecotdovecotMatch2.1.3
OR
dovecotdovecotMatch2.1.4
OR
dovecotdovecotMatch2.1.5
OR
dovecotdovecotMatch2.1.6
OR
dovecotdovecotMatch2.1.7
OR
dovecotdovecotMatch2.1.8
OR
dovecotdovecotMatch2.1.10
OR
dovecotdovecotMatch2.1.11
OR
dovecotdovecotMatch2.1.12
OR
dovecotdovecotMatch2.1.13
OR
dovecotdovecotMatch2.1.14
OR
dovecotdovecotMatch2.1.15
OR
dovecotdovecotMatch2.2rc1
OR
dovecotdovecotMatch2.2rc2
OR
dovecotdovecotMatch2.2rc3
OR
dovecotdovecotMatch2.2rc4
OR
dovecotdovecotMatch2.2rc5
OR
dovecotdovecotMatch2.2rc6
OR
dovecotdovecotMatch2.2rc7
OR
dovecotdovecotMatch2.2.0
OR
dovecotdovecotMatch2.2.1
OR
dovecotdovecotMatch2.2.2
OR
dovecotdovecotMatch2.2.3
OR
dovecotdovecotMatch2.2.4
OR
dovecotdovecotMatch2.2.5
OR
dovecotdovecotMatch2.2.6
OR
dovecotdovecotMatch2.2.7
OR
dovecotdovecotMatch2.2.8
OR
dovecotdovecotMatch2.2.9
OR
dovecotdovecotMatch2.2.10
OR
dovecotdovecotMatch2.2.13rc1
VendorProductVersionCPE
dovecotdovecot1.1cpe:2.3:a:dovecot:dovecot:1.1:*:*:*:*:*:*:*
dovecotdovecot1.1cpe:2.3:a:dovecot:dovecot:1.1:rc2:*:*:*:*:*:*
dovecotdovecot1.1.0cpe:2.3:a:dovecot:dovecot:1.1.0:*:*:*:*:*:*:*
dovecotdovecot1.1.1cpe:2.3:a:dovecot:dovecot:1.1.1:*:*:*:*:*:*:*
dovecotdovecot1.1.2cpe:2.3:a:dovecot:dovecot:1.1.2:*:*:*:*:*:*:*
dovecotdovecot1.1.3cpe:2.3:a:dovecot:dovecot:1.1.3:*:*:*:*:*:*:*
dovecotdovecot1.1.4cpe:2.3:a:dovecot:dovecot:1.1.4:*:*:*:*:*:*:*
dovecotdovecot1.1.5cpe:2.3:a:dovecot:dovecot:1.1.5:*:*:*:*:*:*:*
dovecotdovecot1.1.6cpe:2.3:a:dovecot:dovecot:1.1.6:*:*:*:*:*:*:*
dovecotdovecot1.2.0cpe:2.3:a:dovecot:dovecot:1.2.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 821

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.5

Confidence

High

EPSS

0.091

Percentile

94.7%