The /.inlook/.crypt file for inlook 0.7.3 and earlier is installed with world readable permissions, which allows local users to obtain user POP3 credentials.
https://sourceforge.net/project/shownotes.php?release_id=213427
https://exchange.xforce.ibmcloud.com/vulnerabilities/14990