Directory traversal vulnerability in index/mbox/mbox-storage.c in Dovecot before 1.0.rc29, when using the zlib plugin, allows remote attackers to read arbitrary gzipped (.gz) mailboxes (mbox files) via a .. (dot dot) sequence in the mailbox name.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-04-25 08:19
Updated : 2018-10-16 09:42
NVD link : CVE-2007-2231
Mitre link : CVE-2007-2231
JSON object : View
CWE
Products Affected
dovecot
- dovecot