Published: 12/10/2001 Updated: 10/09/2008
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

POP3 Server for Ipswitch IMail 7.04 and earlier generates different responses to valid and invalid user names, which allows remote malicious users to determine users on the system.

Affected Products

Vendor Product Versions
IpswitchImail6.0.2, 6.0.6, 7.0.4