• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ArGoSoft Mail Server Pro POP3 Server Remote Information Disclosure Vulnerability

The ArGoSoft Mail Server Pro POP3 service is susceptible to a remote information-disclosure vulnerability. This issue is due to the application's failure to require authentication before allowing a command that discloses potentially sensitive information.

This issue allows remote, unauthenticated attackers to gain access to potentially sensitive configuration information. Information that the attacker harvests in this manner may then aid in further attacks.

Version 1.8.8.1 is vulnerable to this issue; other versions may also be affected.