Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts.
1999-12-21T05:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | ipswitch | imail | 5.0 | Yes |
Application | ipswitch | imail | 5.0.5 | Yes |
Application | ipswitch | imail | 5.0.6 | Yes |
Application | ipswitch | imail | 5.0.7 | Yes |
Application | ipswitch | imail | 5.0.8 | Yes |
Application | ipswitch | imail | 6.0 | Yes |