1 results (0.002 seconds)
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 1
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 1CVE-2008-6984
https://notcve.org/view.php?id=CVE-2008-6984
18 Aug 2009 — Plesk 8.6.0, when short mail login names (SHORTNAMES) are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with (1) a base64-encoded username that begins with a valid shortname, or (2) a username that matches a valid password, as demonstrated using (a) SMTP and qmail, and (b) Courier IMAP and POP3. Plesk v8.6.0, cunado la ordenación de nombres de login está activada, permite a atacantes remotos saltarse la autenticación y enviar correo electrónico spam a través de... • http://www.osvdb.org/51652 • CWE-287: Improper Authentication •