Zimbra Email - Stealing Clear-Text Credentials via Memcache injection

Forum for things that doesn't really have anything to do with hMailServer. Such as php.ini, beer, etc etc.
Post Reply

User avatar
mattg
Moderator
Moderator
Posts: 22036
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: Zimbra Email - Stealing Clear-Text Credentials via Memcache injection

Post by mattg » 2022-06-16 03:23

Webmail and groupware increasing looks like a security risk
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

mikedibella
Senior user
Senior user
Posts: 773
Joined: 2016-12-08 02:21

Re: Zimbra Email - Stealing Clear-Text Credentials via Memcache injection

Post by mikedibella » 2022-08-05 19:17

As of yesterday, this vuln now being reported as exploited in-the-wild by CISA: https://www.cisa.gov/uscert/ncas/curren ... ty-catalog

Post Reply