[ic] security problem in Admin UI login?

[Aaron Hazelton]

Hi all,

I just discovered something when I *mis*-typed my password
to get into an Admin for an IC site.....

I have a password which includes letters AND numbers......

If I type in the letters only and leave off the numbers .... I'm in.

If I type in the whole thing..... I'm in.

If I type in only *part* of the letters correctly (although it needs
to be most of them).... I'm in.

Can anyone else confirm this?
RH Linux 7.2
IC 4.8.3

I confirmed that all cookies/cache was deleted and a new
browser window open and all of the above worked in IE 6
as well as in Opera.

This could be a serious thing....

Thanks,
Aaron