ID CVE-2006-2414
Summary Directory traversal vulnerability in Dovecot 1.0 beta and 1.0 allows remote attackers to list files and directories under the mbox parent directory and obtain mailbox names via ".." sequences in the (1) LIST or (2) DELETE IMAP command.
References
Vulnerable Configurations
  • cpe:2.3:a:timo_sirainen:dovecot:1.0
    cpe:2.3:a:timo_sirainen:dovecot:1.0
  • cpe:2.3:a:timo_sirainen:dovecot:1.0_beta2
    cpe:2.3:a:timo_sirainen:dovecot:1.0_beta2
  • cpe:2.3:a:timo_sirainen:dovecot:1.0_beta3
    cpe:2.3:a:timo_sirainen:dovecot:1.0_beta3
  • cpe:2.3:a:timo_sirainen:dovecot:1.0_beta7
    cpe:2.3:a:timo_sirainen:dovecot:1.0_beta7
CVSS
Base: 5.0 (as of 17-05-2006 - 09:30)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
nessus via4
  • NASL family Misc.
    NASL id DOVECOT_DIR_TRAVERSAL.NASL
    description The remote host is running Dovecot, an open source IMAP4 / POP3 server for Linux / Unix. The version of Dovecot installed on the remote host fails to filter directory traversal sequences from user-supplied input to IMAP commands such as LIST and DELETE. An authenticated attacker may be able to leverage this issue to list directories and files in the mbox root's parent directory or possibly to delete index files used by the application.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 21559
    published 2006-05-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21559
    title Dovecot Multiple Command Traversal Arbitrary Directory Listing
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1080.NASL
    description A problem has been discovered in the IMAP component of Dovecot, a secure mail server that supports mbox and maildir mailboxes, which can lead to information disclosure via directory traversal by authenticated users.
    last seen 2019-02-21
    modified 2018-08-09
    plugin id 22622
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22622
    title Debian DSA-1080-1 : dovecot - programming error
  • NASL family SuSE Local Security Checks
    NASL id SUSE_DOVECOT-1398.NASL
    description Users could potentially find out mailbox names of other users (CVE-2006-2414).
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27199
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27199
    title openSUSE 10 Security Update : dovecot (dovecot-1398)
refmap via4
bid 17961
bugtraq 20060512 Dovecot IMAP: Mailbox names list disclosure with mboxes
confirm http://dovecot.org/list/dovecot-cvs/2006-May/005563.html
debian DSA-1080
misc http://www.dovecot.org/list/dovecot-news/2006-May/000006.html
secunia
  • 20308
  • 20315
sreason 913
vupen ADV-2006-2013
xf dovecot-imap-list-information-disclosure(26536)
statements via4
contributor Mark J Cox
lastmodified 2006-08-30
organization Red Hat
statement Not vulnerable. This issue does not affect the versions of Dovecot distributed with Red Hat Enterprise Linux.
Last major update 07-03-2011 - 21:36
Published 16-05-2006 - 06:02
Last modified 18-10-2018 - 12:39
Back to Top