VYPR

Mail Notification

by Nongnu

CVEs (2)

  • CVE-2007-3209Jun 14, 2007
    risk 0.00cvss epss 0.01

    Mail Notification 4.0, when WITH_SSL is set to 0 at compile time, uses unencrypted connections for accounts configured with SSL/TLS, which allows remote attackers to obtain sensitive information by sniffing the network.

  • CVE-2000-0087Jan 12, 2000
    risk 0.00cvss epss 0.01

    Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext.