CVE-1999-1236

Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.

Published: Oct 1, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-1236
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
true_north / internet_anywhere_mail_server	3.1	3.1.x
true_north / internet_anywhere_mail_server	2.3.1	2.3.1.x

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9910&L=ntbugtraq&F=&S=&P=662
http://www.securityfocus.com/bid/731
https://exchange.xforce.ibmcloud.com/vulnerabilities/3285

Vulnerability Database

289,782

CVE-1999-1236