POP Password Changer Unauthorized Password Change

medium Nessus Network Monitor Plugin ID 2518

Synopsis

The remote host is vulnerable to a flaw that allows for the bypassing of authentication

Description

The remote host is running POP Password Changer, a server used to change POP users' passwords, that is vulnerable to unauthorized access. An attacker exploiting this flaw will be able to change users' passwords.

Solution

Upgrade or patch according to vendor recommendations.

Plugin Details

Severity: Medium

ID: 2518

Family: POP Server

Published: 8/18/2004

Updated: 3/6/2019

Reference Information

BID: 12240

Detections

Analytics