claws-mail -- APOP vulnerability

2007-04-02T00:00:00
ID C389D06D-EE57-11DB-BD51-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2007-04-02T00:00:00

Description

CVE reports:

The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle (MITM) attacks that use crafted message IDs and MD5 collisions.