Max CVSS | 6.5 | Min CVSS | 5.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-2167 | 6.5 |
script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot configuration setting, which might allow remote authenticated users to conduct directory traversal attacks by leveraging a script.
|
29-08-2017 - 01:29 | 24-05-2011 - 23:55 | |
CVE-2011-2166 | 6.5 |
script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration settings, which might allow remote authenticated users to bypass intended access restrictions by leveraging a script.
|
29-08-2017 - 01:29 | 24-05-2011 - 23:55 | |
CVE-2011-4318 | 5.8 |
Dovecot 2.0.x before 2.0.16, when ssl or starttls is enabled and hostname is used to define the proxy destination, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) of the X.509 certificate, which allows
|
07-03-2013 - 05:00 | 07-03-2013 - 01:55 |