QwikSec

Security Database

CVE

CWE

Training

CVE-2005-0322

Published: Feb 10, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 and Mail Server 7.6.4r with Icewarp Mail Server 5.3.2 uses weak encryption in the (1) users.cfg, (2) settings.cfg, (3) users.dat or (4) user.dat files, which allows local users to extract the passwords.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20050128 Multiple vulnerabilities in Icewarp Web Mail 5.3.0: New holes

mailing-list

x_refsource_BUGTRAQ

merak-icewarp-weak-password-encryption(19153)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.