AI Score
Confidence
Low
EPSS
Percentile
5.1%
Kolab Server 2.0.1, 2.0.2 and development versions pre-2.1-20051215 and earlier, when authenticating users via secure SMTP, stores authentication credentials in plaintext in the postfix.log file, which allows local users to gain privileges.
kolab.org/security/kolab-vendor-notice-08.txt
secunia.com/advisories/18438
www.osvdb.org/22381
www.vupen.com/english/advisories/2006/0186
exchange.xforce.ibmcloud.com/vulnerabilities/24123