Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1002

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-1002
Last Modified 05 Sep 2008 04:22:24
Published 11 Dec 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1002

Summary

POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks.

Vulnerable Systems

Application

  • Stalker Communigate Pro 3.3.2


References

XF - communigate-email-verify

BID - 1792

BUGTRAQ - 20001012 Re: Netscape Messaging server 4.15 poor error strings


Last Updated: 27 May 2016 10:35:58