Netscape Messenging Server POP3 Error Message User Account Enumeration

Medium Nessus Plugin ID 10681


The remote POP server allows an attacker to determine whether a given username exists or not.


The remote POP server allows an attacker to obtain a list of valid logins on the remote host, thanks to a brute-force attack.

If the user connects to this port and issues the commands :
USER 'someusername' PASS 'whatever'

the user will then get a different response whether the account 'someusername' exists or not.


None at this time.

Plugin Details

Severity: Medium

ID: 10681

File Name: netscape_pop_auth.nasl

Version: $Revision: 1.21 $

Type: remote

Family: Misc.

Published: 2001/05/29

Modified: 2015/12/23

Dependencies: 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:F/RL:U/RC:ND

Vulnerability Information

CPE: cpe:/a:netscape:messaging_server

Excluded KB Items: global_settings/supplied_logins_only

Vulnerability Publication Date: 2000/10/11

Reference Information

CVE: CVE-2000-0960

BID: 1787

OSVDB: 565