MailEnable Multiple Products POP3 Authentication Bypass
High Nessus Network Monitor Plugin ID 3483
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote host is running a vulnerable version of the MailEnable email server. While the details of the flaw are unknown, it is alleged that a remote attacker can create a query such that they gain administrative access without actually authenticating.
SolutionUpgrade to MailEnable Professional 1.74 or higher, MailEnable Enterprise Edition 1.22 or higher, or Mailenable 1.94 or higher.