#VU45672 Out-of-bounds read in Dovecot - CVE-2020-12673

Cybersecurity Help s.r.o.

Published: 2020-08-13

Vulnerability identifier: #VU45672

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-12673

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Dovecot
Server applications / Mail servers

Vendor: Dovecot

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition when processing NTLM requests. A remote attacker can send a specially formatted NTLM reques, trigger out-of-bounds read error and crash the auth service.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Dovecot: 2.3.0 - 2.3.11.2

External links
https://dovecot.org/pipermail/dovecot-news/2020-August/000442.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler 20.03 LTS update for dovecot

Amazon Linux AMI update for dovecot

CentOS 7 update for dovecot

Red Hat Enterprise Linux 8.1 Extended Update Support update for dovecot

Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions update for dovecot

Red Hat Enterprise Linux 8 update for dovecot

Red Hat Enterprise Linux 7 update for dovecot

Gentoo update for Dovecot

OpenSUSE Linux update for dovecot23

Fedora 31 update for dovecot