CVE-2005-0322 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-0322

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 and Mail Server 7.6.4r with Icewarp Mail Server 5.3.2 uses weak encryption in the (1) users.cfg, (2) settings.cfg, (3) users.dat or (4) user.dat files, which allows local users to extract the passwords.

Affected Software

Name	Vendor	Start Version	End Version
Web_mail	Icewarp	5.3.0 (including)	5.3.0 (including)
Web_mail	Icewarp	5.3.2 (including)	5.3.2 (including)
Mail_server	Merak	7.6.0 (including)	7.6.0 (including)
Mail_server	Merak	7.6.4r (including)	7.6.4r (including)

References

http://marc.info/?l=bugtraq\u0026m=110693950205007\u0026w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/19153