Re: IpSwitch IMail Server <= ver 8.1 User Password

[Anonymous <cripto () ecn org>]

> From eEye's "darker" days:

http://www.w00w00.org/advisories/imailpass.html

At 11:18 PM 8/16/2004 +0600, Adik wrote:
> Hi fellaz,
>
> IpSwitch IMail Server version up to 8.1 uses weak encryption algorithm to
> encrypt its user passwords. Have a look at attached proof of concept tool,
> which will decrypt user password from local machine instantly.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html