paul Posted May 20, 2007 Report Share Posted May 20, 2007 A weakness in the way Evolution processed certain APOP authentication requests was discovered. A remote attacker could potentially obtain certain portions of a user's authentication credentials by sending certain responses when evolution-data-server attempted to authenticate against an APOP server. The updated packages have been patched to prevent this issue. Link to comment Share on other sites More sharing options...
Recommended Posts