FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
3efc106e-c451-11dd-a721-0030843d3802dovecot-managesieve -- Script Name Directory Traversal Vulnerability

Secunia reports:

The security issue is caused due to an input validation error when processing script names. This can be exploited to read or modify arbitrary files having ".sieve" extensions via directory traversal attacks, with the privileges of the attacker's user id.


Discovery 2008-11-18
Entry 2008-12-07
dovecot-managesieve
< 0.10.4

ge 0.11.0 lt 0.11.1

CVE-2008-5301
http://www.vupen.com/english/advisories/2008/3190
http://secunia.com/Advisories/32768/
http://dovecot.org/list/dovecot/2008-November/035259.html