2 matches found
MailEnable NetWebAdmin Unauthorized Access (ME-10019)
The remote version of MailEnable contains a web-based administration tool that allows a user to login with a blank password. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid23755; scriptversion"1.19";...
CVE-2006-6239
CVE-2006-6239 affects MailEnable NetWebAdmin Professional 2.32 and Enterprise 2.32; the webadmin authentication can be bypassed with an empty password, enabling remote access. CVSS v2 base score 7.5 (HIGH). Remediation: apply MailEnable hotfix ME-10019 (as documented by advisories); exploitation ...