CVE-2008-5301

EPSS 0.57%

發布日:2008/12/1修改日:2026/4/28

也稱為:DEBIAN-CVE-2008-5301

描述

Directory traversal vulnerability in the ManageSieve implementation in Dovecot 1.0.15, 1.1, and 1.2 allows remote attackers to read and modify arbitrary .sieve files via a ".." (dot dot) in a script name.

受影響套件(1)

Debian/dovecotfrom 0, < 1:1.0.15-2.3

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5301