Back to search
CVE-2000-0087
Published: Jun 25, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20000113 Misleading sense of security in Netscape
mailing-list
x_refsource_BUGTRAQ
netscape-mail-notify-plaintext(4385)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now