Test ID:	1.3.6.1.4.1.25623.1.1.12.2018.3556.2
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-3556-2)
Summary:	The remote host is missing an update for the 'dovecot' package(s) announced via the USN-3556-2 advisory.
Description:	Summary: The remote host is missing an update for the 'dovecot' package(s) announced via the USN-3556-2 advisory. Vulnerability Insight: USN-3556-1 fixed vulnerabilities in Dovecot. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that Dovecot incorrectly handled certain authentications. An attacker could possibly use this to bypass authentication and access sensitive information. (CVE-2013-6171) Original advisory details: It was discovered that Dovecot incorrectly handled certain authentications. An attacker could possibly use this to cause a denial of service. (CVE-2017-15132) Affected Software/OS: 'dovecot' package(s) on Ubuntu 12.04. Solution: Please install the updated package(s). CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6171 http://cpanel.net/tsr-2013-0010-full-disclosure/ http://www.dovecot.org/list/dovecot-news/2013-November/000264.html http://secunia.com/advisories/54808 https://usn.ubuntu.com/3556-2/ Common Vulnerability Exposure (CVE) ID: CVE-2017-15132 Debian Security Information: DSA-4130 (Google Search) https://www.debian.org/security/2018/dsa-4130 https://lists.debian.org/debian-lts-announce/2018/03/msg00036.html https://www.dovecot.org/list/dovecot-news/2018-February/000370.html https://usn.ubuntu.com/3556-1/
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.