VYPR
High severity7.5NVD Advisory· Published Oct 15, 2008· Updated Jun 16, 2026

CVE-2008-4577

CVE-2008-4577

Description

The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:dovecot:dovecot:*:*:*:*:*:*:*:*range: <1.1.4
    • (no CPE)range: <1.1.4
  • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:opensuse:10.3-11.1:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

17

News mentions

0

No linked articles in our index yet.