CVE-2006-0213

Kolab Server 2.0.1, 2.0.2 and development versions pre-2.1-20051215 and earlier, when authenticating users via secure SMTP, stores authentication credentials in plaintext in the postfix.log file, which allows local users to gain privileges.

Date published : 2006-01-13

http://kolab.org/security/kolab-vendor-notice-08.txt

http://www.osvdb.org/22381