Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026
CVE-2004-2313
CVE-2004-2313
Description
Inter7 SqWebMail 3.4.1 through 3.6.1 generates different error messages for incorrect passwords versus correct passwords on non-mail-enabled accounts (such as root), which allows remote attackers to guess the root password via brute force attacks.
Affected products
8cpe:2.3:a:inter7:sqwebmail:3.4.1:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:inter7:sqwebmail:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:sqwebmail:3.6.1:*:*:*:*:*:*:*
- (no CPE)range: 3.4.1 through 3.6.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.