Vulnerabilities > CVE-2006-6964 - Unspecified vulnerability in Mailenable Professional

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

mailenable

NVD

Published: 2007-01-29

Updated: 2024-11-21

Summary

MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the user's settings, which allows remote authenticated administrators to obtain sensitive information by viewing the HTML source.

Vulnerable Configurations

Part	Description	Count
Application	Mailenable Mailenable Mailenable Professional 1.7 Mailenable Mailenable Professional 1.71 Mailenable Mailenable Professional 1.75 Mailenable Mailenable Professional 1.72 Mailenable Mailenable Professional 1.77 Mailenable Mailenable Professional 1.74 Mailenable Mailenable Professional 1.76 Mailenable Mailenable Professional 1.73	8

References

http://securitytracker.com/id?1016337
http://www.mailenable.com/Professional1-ReleaseNotes.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/27185
http://securitytracker.com/id?1016337
https://exchange.xforce.ibmcloud.com/vulnerabilities/27185
http://www.mailenable.com/Professional1-ReleaseNotes.txt