Cleartext Password Disclosure in MailEnable Professional by MailEnable
CVE-2006-6964

Currently unrated

Key Information:

Vendor

Mailenable

Status
Mailenable Professional
Vendor
CVE Published:
29 January 2007

What is CVE-2006-6964?

The vulnerability in MailEnable Professional prior to version 1.78 allows remote authenticated administrators to access sensitive user information. When an administrator edits user settings, the software reveals user passwords in cleartext within the HTML source code. This exposure makes it feasible for unauthorized access and potential exploitation of user accounts, highlighting the necessity for immediate updates to safeguard user data from potential threats.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.mailenable.com/Professional1-ReleaseNotes.txt
x_refsource_CONFIRM
http://securitytracker.com/id?1016337
vdb-entryx_refsource_SECTRACK
https://exchange.xforce.ibmcloud.com/vulnerabilities/27185
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.