CVE-2008-4578

EPSS 0.76%

Published: 10/15/2008Modified: 4/28/2026

Also known as:DEBIAN-CVE-2008-4578

Description

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

Affected packages (1)

Debian/dovecotfrom 0, < 1:1.1.9-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-4578