This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The remote NNTP server is affected by an authentication bypass
The remote NNTP server contains a logic error that causes clients
that send only a username, neglecting to send a password, to be
treated as authenticated. This may permit an unauthenticated, remote
attacker to view and post to restricted newsgroups, impersonating
other users in the process.
See also :
Upgrade Cyrus IMAPd to version 2.4.12 or later.
Risk factor :
Medium / CVSS Base Score : 6.4
CVSS Temporal Score : 5.3
Public Exploit Available : true