Lucene search
MitreCVELIST:CVE-2010-3779HistoryOct 06, 2010 - 8:00 p.m.
CVE-2010-3779
2010-10-0620:00:00
mitre
www.cve.org
5
Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.beta2 grants the admin permission to the owner of each mailbox in a non-public namespace, which might allow remote authenticated users to bypass intended access restrictions by changing the ACL of a mailbox, as demonstrated by a symlinked shared mailbox.
References
secunia.com/advisories/43220
www.dovecot.org/list/dovecot/2010-October/053450.html
www.dovecot.org/list/dovecot/2010-October/053452.html
www.mandriva.com/security/advisories?name=MDVSA-2010:217
www.ubuntu.com/usn/USN-1059-1
www.vupen.com/english/advisories/2010/2840
www.vupen.com/english/advisories/2011/0301
Related
debiancve
debiancve
CVE-2010-3779
2010-10-06 21:00:01
cve
cve
CVE-2010-3779
2010-10-06 21:00:01
nvd
nvd
CVE-2010-3779
2010-10-06 21:00:01
ubuntucve
ubuntucve
CVE-2010-3779
2010-10-06 00:00:00
prion
prion
Design/Logic Flaw
2010-10-06 21:00:00
debian
debian
BSA-006 Security Update for dovecot
2010-10-13 09:56:59
BSA-006 Security Update for dovecot
2010-10-12 21:45:52
ubuntu
ubuntu
Dovecot vulnerabilities
2011-02-07 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:217 ] dovecot
2010-11-02 00:00:00
Dovecot multiple security vulnerabilities
2010-11-02 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : dovecot (MDVSA-2010:217)
2010-11-01 00:00:00
Ubuntu 10.04 LTS / 10.10 : dovecot vulnerabilities (USN-1059-1)
2011-02-08 00:00:00
GLSA-201110-04 : Dovecot: Multiple vulnerabilities
2011-10-11 00:00:00
openvas
openvas
Ubuntu Update for dovecot vulnerabilities USN-1059-1
2011-02-11 00:00:00
Mandriva Update for dovecot MDVSA-2010:217 (dovecot)
2010-11-16 00:00:00
Mandriva Update for dovecot MDVSA-2010:217 (dovecot)
2010-11-16 00:00:00
gentoo
gentoo
Dovecot: Multiple vulnerabilities
2011-10-10 00:00:00