Dovecot symbolic links vulnerability - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Dovecot symbolic links vulnerability
Published: 05.03.2008
Source: BUGTRAQ
SecurityVulns ID: 8750
Type: local
Level: 5/10
Description: It's possible to access files readable by mail group via symlinks if mail_extra_groups=mail is set.

Affected: DOVECOT : Dovecot 1.0

Original document Timo Sirainen, Dovecot mail_extra_groups setting is often used insecurely (05.03.2008)

Discuss: Read or add your comments to this news (0 comments)