MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 and Mail Server 7.6.4r with Icewarp Mail Server 5.3.2 uses weak encryption in the (1) users.cfg, (2) settings.cfg, (3) users.dat or (4) user.dat files, which allows local users to extract the passwords.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=110693950205007&w=2 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/19153 - |
Information
Published : 2005-05-02 04:00
Updated : 2024-11-20 23:54
NVD link : CVE-2005-0322
Mitre link : CVE-2005-0322
CVE.ORG link : CVE-2005-0322
JSON object : View
Products Affected
icewarp
- web_mail
merak
- mail_server
CWE