exploitDog

CVE-2000-0960

Опубликовано: 19 дек. 2000

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse.

Ссылки

http://marc.info/?l=bugtraq&m=97138100426121&w=2
http://www.securityfocus.com/bid/1787
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5364
http://marc.info/?l=bugtraq&m=97138100426121&w=2
http://www.securityfocus.com/bid/1787
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/5364

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:netscape:messaging_server:4.15:*:*:*:*:*:*:*

cpe:2.3:a:netscape:messaging_server:4.15:patch1:*:*:*:*:*:*

cpe:2.3:a:netscape:messaging_server:4.15:patch2:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00861

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j2pw-q2v3-qqxv

github

больше 3 лет назад

The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse.

EPSS

Процентиль: 74%

0.00861

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other