VYPR

Dovecot

by Dovecot (software)

Source repositories

CVEs (74)

  • CVE-2020-7046Feb 12, 2020
    risk 0.00cvss epss 0.51

    lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3.9.3 mishandles truncated UTF-8 data in command parameters, as demonstrated by the unauthenticated triggering of a submission-login infinite loop.

  • CVE-2019-19722Dec 13, 2019
    risk 0.00cvss epss 0.02

    In Dovecot before 2.3.9.2, an attacker can crash a push-notification driver with a crafted email when push notifications are used, because of a NULL Pointer Dereference. The email must use a group address as either the sender or the recipient.

  • CVE-2019-11494May 8, 2019
    risk 0.00cvss epss 0.02

    In the IMAP Server in Dovecot 2.3.3 through 2.3.5.2, the submission-login service crashes when the client disconnects prematurely during the AUTH command.

  • CVE-2019-11499May 8, 2019
    risk 0.00cvss epss 0.03

    In the IMAP Server in Dovecot 2.3.3 through 2.3.5.2, the submission-login component crashes if AUTH PLAIN is attempted over a TLS secured channel with an unacceptable authentication message.

  • CVE-2019-10691Apr 24, 2019
    risk 0.00cvss epss 0.03

    The JSON encoder in Dovecot before 2.3.5.2 allows attackers to repeatedly crash the authentication service by attempting to authenticate with an invalid UTF-8 sequence as the username.

  • CVE-2019-7524Mar 28, 2019
    risk 0.00cvss epss 0.01

    In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root. This occurs because of missing checks in the fts and pop3-uidl components.

  • CVE-2019-3814Mar 27, 2019
    risk 0.00cvss epss 0.02

    It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid certificate with an empty username field could possibly use this issue to impersonate other users.

  • CVE-2017-2669LowJun 21, 2018
    risk 0.00cvss 3.7epss 0.05

    Dovecot before version 2.2.29 is vulnerable to a denial of service. When 'dict' passdb and userdb were used for user authentication, the username sent by the IMAP/POP3 client was sent through var_expand() to perform %variable expansion. Sending specially crafted %variable fields…

  • CVE-2017-15132HigJan 25, 2018
    risk 0.00cvss 7.5epss 0.03

    A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results in a memory leak in dovecot's auth client used by login processes. The leak has impact in high performance configuration where same login processes are reused and can cause the…

  • CVE-2013-2111May 27, 2014
    risk 0.00cvss epss 0.02

    The IMAP functionality in Dovecot before 2.2.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via invalid APPEND parameters.

  • CVE-2014-3430May 14, 2014
    risk 0.00cvss epss 0.03

    Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consumption) via an incomplete SSL/TLS handshake for an IMAP/POP3 connection.

  • CVE-2013-6171Dec 9, 2013
    risk 0.00cvss epss 0.01

    checkpassword-reply in Dovecot before 2.2.7 performs setuid operations to a user who is authenticating, which allows local users to bypass authentication and access virtual email accounts by attaching to the process and using a restricted file descriptor to modify account…

  • CVE-2011-4318Mar 7, 2013
    risk 0.00cvss epss 0.01

    Dovecot 2.0.x before 2.0.16, when ssl or starttls is enabled and hostname is used to define the proxy destination, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) of the X.509 certificate, which allows man-in-the-middle attackers…

  • CVE-2011-2167May 24, 2011
    risk 0.00cvss epss 0.02

    script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot configuration setting, which might allow remote authenticated users to conduct directory traversal attacks by leveraging a script.

  • CVE-2011-2166May 24, 2011
    risk 0.00cvss epss 0.02

    script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.

  • CVE-2011-1929May 24, 2011
    risk 0.00cvss epss 0.03

    lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-mail message.

  • CVE-2010-3780Oct 6, 2010
    risk 0.00cvss epss 0.02

    Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.

  • CVE-2010-3779Oct 6, 2010
    risk 0.00cvss epss 0.01

    Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.beta2 grants the admin permission to the owner of each mailbox in a non-public namespace, which might allow remote authenticated users to bypass intended access restrictions by changing the ACL of a mailbox, as demonstrated by a…

  • CVE-2010-3707Oct 6, 2010
    risk 0.00cvss epss 0.03

    plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain…

  • CVE-2010-3706Oct 6, 2010
    risk 0.00cvss epss 0.02

    plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain…