NNTP Server Message Header Handling Remote Overflow

High Nessus Plugin ID 17228


The remote service is vulnerable to a buffer overflow.


Nessus was able to crash the remote NNTP server by sending a message with long headers.

This flaw is probably a buffer overflow and might be exploitable to run arbitrary code on this machine.


Apply the latest patches from your vendor or use different software.

Plugin Details

Severity: High

ID: 17228

File Name: nntp_too_long_headers.nasl

Version: $Revision: 1.12 $

Type: remote

Published: 2005/02/28

Modified: 2017/03/21

Dependencies: 11033, 14773

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: Settings/ExperimentalScripts

Exploited by Nessus: true