CVE-2008-6984
Plesk 8.6.0 is affected when SHORTNAMES (short mail login names) are enabled. The issue allows remote attackers to bypass authentication and send spam by crafting a message with (1) a base64-encoded username that starts with a valid shortname, or (2) a username that matches a valid password, demo...