Kolab » Kolab Groupware Server » 1.0.6 : Security Vulnerabilities, CVEs,
Kolab Server 2.0.1, 2.0.2 and development versions pre-2.1-20051215 and earlier, when authenticating users via secure SMTP, stores authentication credentials in plaintext in the postfix.log file, which allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-01-14
Updated
2017-07-20
Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows local users to gain privileges.
Max CVSS
4.6
EPSS Score
0.06%
Published
2004-05-05
Updated
2017-07-11
2 vulnerabilities found