I don't understand the fuss about this subject.
First of all, this information was described almost a year ago in this
same forum, with the same level of details (maybe I still have the original
e-mail). And I thought it was great, because it allowed me (and several
others) to write our own software to deal with IMail accounts. I don't know
how Scott Pouliot, for instance, would have written his DLL was it not for
this information.
Second, the so called exploit requires the user to log at the machine.
Everyone concerned with security knows that if someone has local access he
can do almost *anything* he likes. So it's not a big issue, after all.
I hope IPSwitch does _not_ "fix" this, otherwise it will render my (and
others') apps useless.
Rubens
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
