CVE-2008-2049

CVE-2008-2049 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message.

Learn more about our Cis Benchmark Audit For Server Software.