CVE-2001-0990
Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library.
| Software | From | Fixed in |
|---|---|---|
| inter7 / vpopmail | 3.4.1 | 3.4.1.x |
| inter7 / vpopmail | 3.4.11e | 3.4.11e.x |
| inter7 / vpopmail | 3.4.6 | 3.4.6.x |
| inter7 / vpopmail | 3.4.5 | 3.4.5.x |
| inter7 / vpopmail | 4.7 | 4.7.x |
| inter7 / vpopmail | 4.9.10 | 4.9.10.x |
| inter7 / vpopmail | 3.4.10 | 3.4.10.x |
| inter7 / vpopmail | 4.6 | 4.6.x |
| inter7 / vpopmail | 3.4.7 | 3.4.7.x |
| inter7 / vpopmail | 4.5 | 4.5.x |
| inter7 / vpopmail | 3.4.11 | 3.4.11.x |
| inter7 / vpopmail | 4.8 | 4.8.x |
| inter7 / vpopmail | 3.4.2 | 3.4.2.x |
| inter7 / vpopmail | 3.4.9 | 3.4.9.x |
| inter7 / vpopmail | 3.4.8 | 3.4.8.x |
| inter7 / vpopmail | 4.9 | 4.9.x |
| inter7 / vpopmail | 3.4.3 | 3.4.3.x |
| inter7 / vpopmail | 3.4.4 | 3.4.4.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime