PSCS VPOP3 messagelist.html msglistlen Parameter DoS

medium Nessus Plugin ID 14232

Synopsis

The remote server is vulnerable to a denial of service.

Description

The remote host is running PSCS VPOP3. The remote server is vulnerable to an attack which renders the server useless. An attacker would be able to remotely shut down the server by sending a simple request.

Solution

Upgrade to latest version of VPOP3.

Plugin Details

Severity: Medium

ID: 14232

File Name: pscs_vpop3_dos.nasl

Version: 1.20

Type: remote

Family: CGI abuses

Published: 8/9/2004

Updated: 1/19/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 7/19/2004

Reference Information

BID: 10782