CVE-2010-3780 — Dovecot vulnerability

7 documents7 sources

Severity

4.0MEDIUMNVD

EPSS

1.1%

top 22.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dovecot Debian Dovecot

Timeline

PublishedOct 6

Latest updateMay 17

Description

Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial of service (master process outage) by simultaneously disconnecting many (1) IMAP or (2) POP3 sessions.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/dovecot< dovecot 1:1.2.15-1 (bookworm)

▶Debiandovecot/dovecot< 1:1.2.15-1+3

▶NVDdovecot/dovecot15 versions+14

🔴Vulnerability Details

GHSA

GHSA-cc69-pg9v-6fx9: Dovecot 1↗2022-05-17

▶

OSV

CVE-2010-3780: Dovecot 1↗2010-10-06

▶

📋Vendor Advisories

Ubuntu

Dovecot vulnerabilities↗2011-02-07

▶

Red Hat

Dovecot: Busy master process, receiving a lot of SIGCHLD signals rapidly while logging, could die↗2010-10-06

▶

Debian

CVE-2010-3780: dovecot - Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause a denial ...↗2010

▶

💬Community

Bugzilla

CVE-2010-3780 Dovecot: Busy master process, receiving a lot of SIGCHLD signals rapidly while logging, could die↗2010-10-08

▶