CVE-2007-6598

Priority
Description
Dovecot before 1.0.10, with certain configuration options including use of
%variables, does not properly maintain the LDAP+auth cache, which might
allow remote authenticated users to login as a different user who has the
same password.
Assigned-to
kees
Package
Upstream:released (1.0.10)
Patches:
Upstream:http://hg.dovecot.org/dovecot-1.0/raw-rev/2cedab21cd6d
More Information

Updated: 2019-03-19 11:44:45 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)