DescriptionThe ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2010:017, published Tue, 21 Sep 2010 11:00:00 +0000
- openSUSE-SU-2010:0636-1, published Mon, 20 Sep 2010 17:08:13 +0200 (CEST)
SUSE Timeline for this CVECVE page created: Fri Jun 28 07:34:02 2013
CVE page last modified: Fri Oct 7 12:45:58 2022