CVE-1999-1497

Ipswitch IMail <6.0 - Info Disclosure

Title source: llm

Description

Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Adik · clocalwindows

https://www.exploit-db.com/exploits/401

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Mike Davis · clocalwindows

https://www.exploit-db.com/exploits/19683

View Code ZIP pw:eip

References (2)

[Exploit, Vendor Advisory] http://www.securityfocus.com/archive/1/39329

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/880

Scores

EPSS 0.0053

EPSS Percentile 67.5%

Details

Status published

Products (6)

ipswitch/imail 5.0

ipswitch/imail 5.0.5

ipswitch/imail 5.0.6

ipswitch/imail 5.0.7

ipswitch/imail 5.0.8

ipswitch/imail 6.0

Published Dec 21, 1999

Tracked Since Feb 18, 2026