2 matches found
CVE-1999-1246
The CVE-1999-1246 entry relates to Microsoft Site Server 3.0: the Direct Mailer feature stores user domain names and passwords in plaintext in the TMLBQueue share, which has insecure default permissions. This enables remote read of passwords and privilege escalation as described. The documents do...
CVE-1999-1246
Direct Mailer feature in Microsoft Site Server 3.0 saves user domain names and passwords in plaintext in the TMLBQueue network share, which has insecure default permissions, allowing remote attackers to read the passwords and gain privileges...