CVE-1999-1236

Description

Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.

Affected Software
References

Software	From	Fixed in
true_north / internet_anywhere_mail_server	2.3.1	2.3.1.x
true_north / internet_anywhere_mail_server	3.1	3.1.x

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9910&L=ntbugtraq&F=&S=&P=662
http://www.securityfocus.com/bid/731
https://exchange.xforce.ibmcloud.com/vulnerabilities/3285

Severity: Low

CVE: CVE-1999-1236
Published: Oct 1, 1999
Updated: Apr 13, 2023
Exploit:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CVE-1999-1236

Description

Details

CVSS v2