Vulnonym.org

CVE-1999-1366 - Unreflected Elapse

Description

Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file which allows local users to easily decrypt the passwords and read e-mail.

Reference

http://marc.info/?l=bugtraq&m=92714118829880&w=2