Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2010/01/19 12:0 a.m.32 views

openSUSE Security Update : dovecot12 (dovecot12-1811)

Dovecot created the configured 'basedir' /var/run/dovecot with mode 0777 if it didn't exist, therefore allowing local users to mess with e.g. the authentication socket CVE-2009-3897. Note that /var/run/dovecot is part of the dovecot rpm with proper permission settings. Therefor dovecot is not...

5.5CVSS5.6AI score0.00375EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.22 views

FreeBSD Ports: dovecot

The remote host is missing an update to the system as announced in the referenced advisory. VID 30211c45-e52a-11de-b5cd-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID 30211c45-e52a-11de-b5cd-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

4.6CVSS0.1AI score0.00375EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.21 views

FreeBSD Ports: dovecot

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5.5CVSS5.4AI score0.00375EPSS
Exploits0References3
Debian
Debian
added 2009/12/02 7:11 p.m.27 views

[Backports-security-announce] Security Update for dovecot

Marco Nenciarini uploaded new packages for dovecot which fix the following security problem: CVE-2009-3897 Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth...

5.5CVSS3.4AI score0.00375EPSS
Exploits0
Debian
Debian
added 2009/12/02 7:3 p.m.25 views

[Backports-security-announce] Security Update for dovecot

Marco Nenciarini uploaded new packages for dovecot which fix the following security problem: CVE-2009-3897 Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth...

5.5CVSS6.2AI score0.00375EPSS
Exploits0
OSV
OSV
added 2009/11/24 5:30 p.m.8 views

CVE-2009-3897

Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the basedir directory, and possibly the basedir directory...

5.5CVSS5.5AI score
Exploits0References20
CVE
CVE
added 2009/11/24 5:0 p.m.70 views

CVE-2009-3897

CVE-2009-3897 affects Dovecot 1.2.x before 1.2.8, where during installation the base_dir-related directories (and possibly the base_dir itself) are created with mode 0777. This permits a local attacker to access or replace the authentication socket and potentially access arbitrary user accounts. ...

5.5CVSS5.4AI score0.00375EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder