How to Buy
This script is Copyright (C) 2009-2011 Tenable Network Security, Inc.
The remote NNTP server is vulnerable to a denial of service attack.
According to its version number, the remote Leafnode NNTP server is
vulnerable to a denial of service attack. Specifically, it may go
into an infinite loop with 100% CPU use when an article that has been
crossposted to several groups, one of which is the prefix of another,
and when this article is then requested by its Message-ID.
Note that Nessus did not actually test for the flaw but instead has
relied on the version in Leafnode's banner so this may be a false
See also :
Upgrade to 1.9.48 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Nessus Plugin ID: 42259 (leafnode_1_9_29.nasl)
Bugtraq ID: 6490
CVE ID: CVE-2002-1661
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.