Kozan has discovered a security issue in ICUII, which can be exploited by malicious, local users to disclose sensitive information.
The problem is that passwords are stored in plain text in the world-readable file "icuii.ini".
The security issue has been confirmed in version 7.0.0. Other versions may also be affected.
SOFTWARE:
ICUII 7.x
SOLUTION:
Grant only trusted users access to affected systems.
VERIFY ADVISORY:
http://secunia.com/advisories/15171/
Secunia Security Advisories
http://community.securityteam.us/article.php/20050505090819127