CVE-2008-4578

Related Files

Gentoo Linux Security Advisory 200812-16

Posted Dec 15, 2008

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200812-16 - Multiple vulnerabilities were found in the Dovecot mailserver. Versions less than 1.1.7-r1 are affected.

tags | advisory, vulnerability

systems | linux, gentoo

advisories | CVE-2008-4577, CVE-2008-4578, CVE-2008-4870, CVE-2008-4907

SHA-256 | 469caccee3552d8a95b0ef10e4b692ab98806818590798925e276bd7f6bb66a0

Download | Favorite | View

Mandriva Linux Security Advisory 2008-232

Posted Nov 19, 2008

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2008-232 - The ACL plugin in dovecot prior to version 1.1.4 treated negative access rights as though they were positive access rights, which allowed attackers to bypass intended access restrictions. The ACL plugin in dovecot prior to version 1.1.6 allowed attackers to bypass intended access restrictions by using the 'k' right to create unauthorized 'parent/child/child' mailboxes.

tags | advisory

systems | linux, mandriva

advisories | CVE-2008-4577, CVE-2008-4578

SHA-256 | 3dcb5d843d56558227e4581b0d21854b12e0ece4e41854a8044f583cb9217495

Download | Favorite | View