Plaintext Password Storage Vulnerability in Internet Anywhere Mail Server 2.3.1

Plaintext Password Storage Vulnerability in Internet Anywhere Mail Server 2.3.1

CVE-1999-1236 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.

Learn more about our Cis Benchmark Audit For Server Software.