CVE-2025-6996 Improper Encryption in Ivanti Endpoint Manager

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

IPSwitch IMail Server 8.1 - Local Password Decryption Utility / IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

/ IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In order to decrypt user password we need a key. IMail uses usernam...

ArGoSoft FTP Server 1.2.2.2 - Weak Password Encryption

// source: https://www.securityfocus.com/bid/3029/info ArGoSoft FTP server is an FTP server for the Windows platform. A design error exists in ArGoSoft FTP which enables an authenticated user to view other users encrypted passwords. However due to a weak encryption scheme it is possible for a use...