Zimbra Email - Stealing Clear-Text Credentials via Memcache

We discovered flaws in Zimbra, an enterprise email solution, that allow attackers to steal credentials of users and gain access to their email accounts.

Zimbra Email - Stealing Clear-Text Credentials via Memcache

Bug Bytes #174 - From $0 bounties to $150k, Hacker summer school