Out-of-bounds read in Dovecot

#VU45672 Out-of-bounds read in Dovecot

Published: 2020-08-13

Vulnerability identifier: #VU45672

Vulnerability risk: Medium

CVSSv3.1: 5.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-12673

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Dovecot
Server applications / Mail servers

Vendor: Dovecot

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition when processing NTLM requests. A remote attacker can send a specially formatted NTLM reques, trigger out-of-bounds read error and crash the auth service.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Dovecot: 2.3.0 - 2.3.11.2

External links
http://dovecot.org/pipermail/dovecot-news/2020-August/000442.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler 20.03 LTS update for dovecot

Amazon Linux AMI update for dovecot

CentOS 7 update for dovecot

Red Hat Enterprise Linux 8.1 Extended Update Support update for dovecot

Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions update for dovecot

Red Hat Enterprise Linux 8 update for dovecot

Red Hat Enterprise Linux 7 update for dovecot

Gentoo update for Dovecot

OpenSUSE Linux update for dovecot23