leafnode Cross-Posted Article Group Name Prefix DoS

Medium Nessus Plugin ID 42259


The remote NNTP server is vulnerable to a denial of service attack.


According to its version number, the remote Leafnode NNTP server is vulnerable to a denial of service attack. Specifically, it may go into an infinite loop with 100% CPU use when an article that has been crossposted to several groups, one of which is the prefix of another, and when this article is then requested by its Message-ID.

Note that Nessus did not actually test for the flaw but instead has relied on the version in Leafnode's banner so this may be a false positive.


Upgrade to 1.9.48 or later.

See Also


Plugin Details

Severity: Medium

ID: 42259

File Name: leafnode_1_9_29.nasl

Version: $Revision: 1.7 $

Type: remote

Family: Misc.

Published: 2009/10/27

Modified: 2011/03/11

Dependencies: 10159

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

Required KB Items: nntp/leafnode

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2002/12/30

Reference Information

CVE: CVE-2002-1661

BID: 6490

OSVDB: 16568