exploitDog

GHSA-263w-6jpf-2h2q

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message.

The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message.

Ссылки

EPSS

Процентиль: 66%

0.00516

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2008-2049

nvd

почти 18 лет назад

The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message.

EPSS

Процентиль: 66%

0.00516

Низкий

CVE ID

Дефекты

CWE-200