cbcvebase.
CVE-2006-2346
published 2006-05-12

CVE-2006-2346: vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set…

PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.71%
74.5th percentile
vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set by using a blank password to (1) SMTP AUTH or (2) APOP.

Affected

2 ranges
VendorProductVersion rangeFixed in
inter7vpopmail
inter7vpopmail
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.