Unrated severityNVD Advisory· Published May 12, 2006· Updated Jun 16, 2026
CVE-2006-2346
CVE-2006-2346
Description
vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set by using a blank password to (1) SMTP AUTH or (2) APOP.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4.14:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4.14:*:*:*:*:*:*:*
- cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4.15:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.