Security Advisory

CVE-2008-4870

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-10-31 22:00:00

Last updated 2024-08-07 10:31:27

Assigner mitre

State PUBLISHED

Description

dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly Fedora, uses world-readable permissions for dovecot.conf, which allows local users to obtain the ssl_key_password parameter value.

← Browse all CVEs View on cve.org ↗