Vulnerability in Zimbra that steals clear-text credentials from users
Vulnerability in Zimbra that steals clear-text credentials from users
Threat Level
Vulnerability Report
For a detailed advisory, download the pdf file here
Summary
A new vulnerability in Zimbra allows an attacker to steal cleartext credentials from instances via Memcache injection. Over 200,000 users logged in can be impacted by the security flaw.