Timo Sirainen » Dovecot : Security Vulnerabilities, CVEs, Published In 2006 (Overflow)
Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when index files are used and mmap_disable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service (crash) via unspecified vectors involving the cache file.
Max CVSS
5.0
EPSS Score
15.20%
Published
2006-11-20
Updated
2018-10-17
Multiple unspecified vulnerabilities in Dovecot before 1.0beta3 allow remote attackers to cause a denial of service (application crash or hang) via unspecified vectors involving (1) "potential hangs" in the APPEND command and "potential crashes" in (2) dovecot-auth and (3) imap/pop3-login. NOTE: vector 2 might be related to a double free vulnerability.
Max CVSS
5.0
EPSS Score
1.83%
Published
2006-02-16
Updated
2017-07-20
2 vulnerabilities found