Early Access — Mondoo Vulnerability Intelligence is currently in preview.
The POP3 server (EPSTPOP3S.EXE) 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message.
Exploitability
AV:NAC:MAu:NImpact
C:PI:NA:N4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N