Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1236

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1236
Last Modified 05 Sep 2008 04:19:02
Published 01 Oct 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1236

Summary

Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.

Vulnerable Systems

Application

  • True North Internet Anywhere Mail Server 2.3.1

  • True North Internet Anywhere Mail Server 3.1


References

XF - iams-passwords-plaintext(3285)

BID - 731

NTBUGTRAQ - 19991001 Vulnerabilities in the Internet Anywhere Mail Server


Last Updated: 27 May 2016 10:35:20