Lucene search

[email protected]CVE-2005-0101

HistoryFeb 01, 2005 - 5:00 a.m.

CVE-2005-0101

2005-02-0105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

buffer overflow

newspost

remote code execution

nntp

security vulnerability

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

89.1%

JSON

Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.

CPENameOperatorVersion
newspost:newspostnewspostle2.1.1

CPE	Name	Operator	Version
newspost:newspost	newspost	le	2.1.1

References

marc.info/?l=bugtraq&m=110746336728781&w=2

people.freebsd.org/~niels/issues/newspost-20050114.txt

secunia.com/advisories/14092/

secunia.com/advisories/14098

security.gentoo.org/glsa/glsa-200502-05.xml

securitytracker.com/id?1013056

www.securityfocus.com/bid/12418

www.vuxml.org/freebsd/7f13607b-6948-11d9-8937-00065be4b5b6.html

exchange.xforce.ibmcloud.com/vulnerabilities/19178

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.021 Low

EPSS

Percentile

89.1%

JSON

Related for CVE-2005-0101

nessus2 ubuntucve1 openvas2 freebsd1 gentoo1