ArGoSoft Mail Server AddNew Unauthenticated Access Vulnerability

info
discussion
exploit
solution
references

ArGoSoft Mail Server AddNew Unauthenticated Access Vulnerability

ArGoSoft Mail Server is prone to an unauthenticated access vulnerability regarding the creation of new accounts.

This issue is due to a failure in the application to require authentication before accessing the 'addnew' script.