XtraMail POP3 PASS Command Remote Overflow

Critical Nessus Plugin ID 10325


The remote host is running a mail server with a remote buffer overflow vulnerability.


The remote POP3 server is vulnerable to the following buffer overflow :

USER test PASS <buffer>

This may allow an attacker to execute arbitrary commands as root on the remote POP3 server.


Contact the vendor for the latest update.

See Also


Plugin Details

Severity: Critical

ID: 10325

File Name: xtramail_pop_overflow.nasl

Version: $Revision: 1.45 $

Type: remote

Published: 1999/11/10

Modified: 2016/11/01

Dependencies: 10196, 17975

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:U/RC:ND

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Vulnerability Publication Date: 1999/11/10

Reference Information

CVE: CVE-1999-1511

BID: 791

OSVDB: 253