Test Kennung:	1.3.6.1.4.1.25623.1.0.14829
Kategorie:	Misc.
Titel:	Intellipeer POP3 server user account enumeration
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote POP3 server (probably intellipeer pop3 server) is vulnerable to an account enumeration issue. If an attacker attempts to log into the remote host by submitting a bogus username, then the server will reply with a specific error message if the account is non-existant, while it will reply with another message if the account exists. An attacker may use this flaw to set up a brute force attack against the remote server to obtain a list of valid user names and accounts. Solution : Upgrade to the newest version of this server or change it Risk factor : Medium
Querverweis:	BugTraq ID: 11257 Common Vulnerability Exposure (CVE) ID: CVE-2004-2150 http://www.securityfocus.com/bid/11257 http://www.osvdb.org/10349 http://securitytracker.com/id?1011425 http://secunia.com/advisories/12661/ XForce ISS Database: intellipeer-username-obtain-information(17510) https://exchange.xforce.ibmcloud.com/vulnerabilities/17510
Copyright	This script is Copyright (C) 2004 Tenable Network Security

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.