IMAP: Dovecot SASL Authentication Component Denial of Service

This signature detects an attempt to exploit a known vulnerability in the SASL authentication component of Dovecot server. Successful exploitation could result in a denial of service condition.

Extended Description

The auth component in Dovecot before 2.2.27, when auth-policy is configured, allows a remote attackers to cause a denial of service (crash) by aborting authentication without setting a username.

Affected Products

Dovecot dovecot

References

CVE: CVE-2016-8652

Short Name
IMAP:DOVECOT-SASL-AUTH-DOS
Severity
Major
Recommended
True
Recommended Action
None
Category
IMAP
Keywords
Authentication CVE-2016-8652 Component Denial Dovecot SASL Service of
Release Date
03/16/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Dovecot

CVSS Score

4.3

Found a potential security threat?