Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

MailEnable Multiple Products POP3 Authentication Bypass

High

Synopsis

The remote host is vulnerable to a flaw that allows for the bypassing of authentication.

Description

The remote host is running a vulnerable version of the MailEnable email server. While the details of the flaw are unknown, it is alleged that a remote attacker can create a query such that they gain administrative access without actually authenticating.

Solution

Upgrade to MailEnable Professional 1.74 or higher, MailEnable Enterprise Edition 1.22 or higher, or Mailenable 1.94 or higher.