We discovered flaws in Zimbra, an enterprise email solution, that allow attackers to steal credentials of users and gain access to their email accounts.
Zimbra Email - Stealing Clear-Text Credentials via Memcache
Bug Bytes #174 - From $0 bounties to $150k, Hacker summer school