CVE-2009-3897

Related Files

Gentoo Linux Security Advisory 201110-04

Posted Oct 10, 2011

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201110-4 - Multiple vulnerabilities were found in Dovecot, the worst of which allowing for remote execution of arbitrary code. Versions less than 2.0.13 are affected.

tags | advisory, remote, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2009-3235, CVE-2009-3897

SHA-256 | 9c7d8a2c3709f69bccb785657943f9036d02698c11410d7caab2bf38de049a96

Download | Favorite | View

Mandriva Linux Security Advisory 2009-306

Posted Nov 30, 2009

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-306 - Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the base_dir directory, and possibly the base_dir directory itself. The updated packages have been patched to correct these issues.

tags | advisory, arbitrary, local

systems | linux, mandriva

advisories | CVE-2009-3897

SHA-256 | d9571c3961fd47c956899a4032f0b9a1cf3398e9d0bebaf5ba4b56b9ba832758

Download | Favorite | View