7 matches found
openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0636-1)
When using Maildir all ACLs on INBOX were copied to newly created mailboxes although only default ACLs should have been copied CVE-2010-3304. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Ubuntu: Security Advisory (USN-1059-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Update for dovecot MDVSA-2010:217 (dovecot)
Check for the Version of dovecot OpenVAS Vulnerability Test Mandriva Update for dovecot MDVSA-2010:217 dovecot Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
CVE-2010-3304
The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs...
CVE-2010-3304
CVE-2010-3304 affects Dovecot 1.2.x (before 1.2.13). In certain configurations, the ACL plugin propagates INBOX ACLs to newly created mailboxes, potentially allowing remote attackers to read mailboxes with unintended weak ACLs. Remediation: upgrade to Dovecot 1.2.13 or later (or apply relevant pa...
CVE-2010-3304
The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs...
openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0636-1)
When using Maildir all ACLs on INBOX were copied to newly created mailboxes although only default ACLs should have been copied CVE-2010-3304. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...