The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-09-24T18:00:00
Updated: 2010-09-30T09:00:00
Reserved: 2010-09-13T00:00:00
Link: CVE-2010-3304
JSON object: View
NVD Information
Status : Modified
Published: 2010-09-24T19:00:04.980
Modified: 2011-02-12T06:43:34.073
Link: CVE-2010-3304
JSON object: View
Redhat Information
No data.
CWE