Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0104

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0104
Last Modified 05 Sep 2008 04:23:16
Published 12 Feb 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0104

Summary

MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key.

Vulnerable Systems

Application

  • Alt-n Mdaemon 3.5.1


References

XF - mdaemon-lock-bypass-password

BID - 2115

BUGTRAQ - 20001214 Bypass MDaemon 3.5.1 "Lock Server" Protection


Last Updated: 27 May 2016 10:36:08