University of Washington Information for VU#702777
UW-imapd fails to properly authenticate users when using CRAM-MD5
This problem is fixed in the January 4, 2005 release version of
The convenience link:
now points to this version.
The vendor has not provided us with any further information regarding this vulnerability.
US-CERT has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.