DOCUMENTATION

Views

Search

Toolbox

Advisories:rPSA-2008-0108

From rPath Wiki

Jump to: navigation, search

rPath Security Advisory 2008-0108-1

Published: 2008-03-12

Products

rPath Linux 1

Rating

Major

Exposure Level Classification

Remote Deterministic Unauthorized Access

Updated Versions

dovecot=conary.rpath.com@rpl:1/1.0.13-0.1-1

rPath Issue Tracking System

RPL-2341

References

CVE-2008-1218

Description

Previous versions of the dovecot package are vulnerable to an

Unauthorized Access attack in which a remote attacker may bypass

password authentication.

dovecot is not installed by default on rPath Linux systems, and

the default dovecot configuration file provided with rPath Linux

does not trigger this vulnerability; only systems customized to

include and reconfigure dovecot may be vulnerable.

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

Retrieved from "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0108"

Categories: Support Issue | Advisories