HomeDovecotCVE-2008-4578

CVE-2008-4578

UNKNOWN
5.0CVSS
Published: 2008-10-15
Updated: 2025-04-09
AI Analysis

Description

The ACL plugin in Dovecot before 1.1.4 allows attackers to bypass intended access restrictions by using the "k" right to create unauthorized "parent/child/child" mailboxes.

CVSS Metrics

Vector
AV:N/AC:L/Au:N/C:N/I:P/A:N
Access Vector
network
Access Cmplx
low
Auth
none
Confidentiality
none
Integrity
partial
Availability
none
Weaknesses
CWE-264

Metadata

Primary Vendor
DOVECOT
Published
10/15/2008
Last Modified
4/9/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

dovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecotdovecot : dovecot

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2008-4578 | UNKNOWN Severity | CVEDatabase.com | CVEDatabase.com