PT-2007-1244 · Mailenable · Mailenable Professional

Publicado

2007-01-29

Atualizado

2017-07-29

CVE-2006-6964

CVSS v2.0

4.0

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: MailEnable Professional versions prior to 1.78

Description: The issue allows remote authenticated administrators to obtain sensitive information, specifically cleartext user passwords, by viewing the HTML source when editing a user's settings.

Recommendations: For MailEnable Professional versions prior to 1.78, update to version 1.78 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-6964

Produtos afetados

Mailenable Professional

PT-2007-1244 · Mailenable · Mailenable Professional

CVE-2006-6964

Identificadores relacionados

Produtos afetados

Referências · 4