CVE-1999-1497

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Dec 21, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1497 is a vulnerability affecting Ipswitch IMail 5.0 and 6.0. This issue arises due to the use of weak encryption for storing passwords in registry keys. Local attackers can exploit this weakness to gain access to e-mail account passwords. This vulnerability poses a significant risk, as it allows unauthorized access to sensitive email information. The impact of this issue is increased if the email accounts contain sensitive or confidential data. Local attackers can easily read these passwords, putting the confidentiality and integrity of the affected system at risk. Users are advised to apply the available patches or upgrade to a more secure version of Ipswitch IMail to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share