Lucene search
+L

11 matches found

OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for dovecot (EulerOS-SA-2019-1644)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.028EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/03 12:0 a.m.31 views

openSUSE: Security Advisory for dovecot23 (openSUSE-SU-2019:1312-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/03 12:0 a.m.31 views

openSUSE Security Update : dovecot23 (openSUSE-2019-1312)

This update for dovecot23 fixes the following issues : Security issue fixed : - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable...

7.5CVSS7.9AI score0.028EPSS
Exploits0References2
OSV
OSV
added 2019/05/02 2:24 p.m.7 views

OPENSUSE-SU-2019:1312-1 Security update for dovecot23

This update for dovecot23 fixes the following issues: Security issue fixed: - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. This update was imported from the SUSE:SLE-15:Update update project...

7.5CVSS7.8AI score0.028EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/04/29 12:0 a.m.29 views

Dovecot < 2.3.5.2 Denial of Service Vulnerability

Dovecot is prone to a Denial of Service DoS vulnerability. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

7.5CVSS7.5AI score0.028EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/24 4:49 p.m.36 views

CVE-2019-10691

The JSON encoder in Dovecot before 2.3.5.2 allows attackers to repeatedly crash the authentication service by attempting to authenticate with an invalid UTF-8 sequence as the username...

6.2AI score0.028EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/04/24 12:0 a.m.38 views

Ubuntu 18.10 / 19.04 : Dovecot vulnerability (USN-3951-1)

It was discovered that the Dovecot JSON encoder incorrectly handled certain invalid UTF-8 characters. A remote attacker could possibly use this issue to cause Dovecot to repeatedly crash, resulting in a denial of service. Note that Tenable Network Security has extracted the preceding description...

7.5CVSS8AI score0.028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/04/24 12:0 a.m.29 views

SUSE SLES15 Security Update : dovecot23 (SUSE-SU-2019:0997-1)

This update for dovecot23 fixes the following issues : Security issue fixed : CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501. Note that Tenable Network Security has extracted the preceding description block directly from the...

7.5CVSS7.9AI score0.028EPSS
Exploits0References4
OSV
OSV
added 2019/04/23 4:43 p.m.5 views

SUSE-SU-2019:0997-1 Security update for dovecot23

This update for dovecot23 fixes the following issues: Security issue fixed: - CVE-2019-10691: Fixed a denial of service via reachable assertion when processing invalid UTF-8 characters bsc1132501...

7.5CVSS7.4AI score0.028EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/04/19 12:0 a.m.41 views

FreeBSD : dovecot -- json encoder crash (a64aa22f-61ec-11e9-85b9-a4badb296695)

Aki Tuomi reports : CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. This could be used rather easily to cause a DoS. Similar crash also happens during mail delivery when using invalid UTF8 in From or Subject...

7.5CVSS7.8AI score0.028EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2019/04/09 12:0 a.m.73 views

dovecot -- json encoder crash

Aki Tuomi reports: CVE-2019-10691: Trying to login with 8bit username containing invalid UTF8 input causes auth process to crash if auth policy is enabled. This could be used rather easily to cause a DoS. Similar crash also happens during mail delivery when using invalid UTF8 in From or Subject...

7.5CVSS0.2AI score0.028EPSS
Exploits0References1
Rows per page
Query Builder