NNTP Server Message Header Handling Remote Overflow

high Nessus Plugin ID 17228


The remote service is vulnerable to a buffer overflow.


Nessus was able to crash the remote NNTP server by sending a message with long headers.

This flaw is probably a buffer overflow and might be exploitable to run arbitrary code on this machine.


Apply the latest patches from your vendor or use different software.

Plugin Details

Severity: High

ID: 17228

File Name: nntp_too_long_headers.nasl

Version: 1.13

Type: remote

Published: 2/28/2005

Updated: 8/5/2020

Risk Information


Risk Factor: High

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: Settings/ExperimentalScripts

Exploited by Nessus: true