Detections
Analytics

INN < 2.2.2 Crafted Article Handling Remote Overflow

medium Nessus Plugin ID 14683

Language:

Synopsis

The remote host is affected by a remote buffer overflow vulnerability.

Description

The remote host is running INN (InterNetNews).

The remote version of this server does not do proper bounds checking. An attacker may exploit this issue to crash the remote service by overflowing some of the buffers by sending a maliciously formatted news article.

Solution

Upgrade to version 2.2.2 of this service or newer

See Also

http://www.nessus.org/u?c352440e

Plugin Details

Severity: Medium

ID: 14683

File Name: inn_buff_overflow.nasl

Version: 1.15

Type: remote

Family: Misc.

Published: 9/8/2004

Updated: 7/12/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 11/24/1999

Reference Information

CVE: CVE-2000-0360

BID: 1249