CVE-2006-5973
SUSE LINUX 10.1
CVE-2006-5973, security advisory, novell, suse linux, suse, security, cve

CVE-2006-5973

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2006-5973 at MITRE

Description

Off-by-one buffer overflow in Dovecot 1.0test53 through 1.0.rc14, and possibly other versions, when index files are used and mmap_disable is set to "yes," allows remote authenticated IMAP or POP3 users to cause a denial of service (crash) via unspecified vectors involving the cache file.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.96
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial
SUSE Bugzilla entry: 222613 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE LINUX 10.1
  • dovecot >= 1.0.beta3-13.6