POP (Post Office Protocol) #

At a Glance #

POP, or POP3 (POP version 3), is an application-layer protocol used by email clients to retrieve messages from a mail server. It provides access via IP to mailboxes maintained on a server.

Because POP was designed for temporary Internet connection, clients connect, retrieve messages, store them on the client, and finally delete them from the server. Clients also have the option to leave messages on the server. By contrast, IMAP was designed to normally leave all messages on the server allowing multiple client applications as online and offline modes. ¹

Banner Grabbing #

Telnet #

telnet 10.0.0.3 110

Netcat #

nc -n 10.0.0.3 110

openssl ² #

openssl s_client -crlf -connect 10.0.0.3:995

NTLM Information Disclosure #

See SMTP NTLM Information Disclosure

pop3-ntlm-info NSE Script #

nmap -p 110,995 --script pop3-ntlm-info 10.0.0.3

Capabilities #

POP3 capabilities are defined in RFC2449. The CAPA command allows a client to ask a server what commands it supports and possibly any site-specific policy.

pop3-capabilities NSE Script #

nmap -p 110,995 --script pop3-capabilities 10.0.0.3

Commands #

USER    Username or mailbox.
PASS    Server/mailbox-specific password.
STAT    Number of messages in the mailbox.
LIST    [ message# ] Messages summary.
RETR    [ message# ] Retrieve selected message.
DELE    [ message# ] Delete selected message.
RSET    Reset the session. Undelete deleted messages.
NOOP    No-op. Keeps connection open.
QUIT    End session.

POP3 Exploits Search #

Refer to Exploits Search