2007-01-29 16:00:00
mitre
PUBLISHED
MailEnable Professional before 1.78 provides a cleartext user password when an administrator edits the users settings, which allows remote authenticated administrators to obtain sensitive information by viewing the HTML source.