Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbJoey__EDB-ID:19895
HistoryMar 01, 2000 - 12:00 a.m.

NetWin DNews 5.3 Server - Remote Buffer Overflow

2000-03-0100:00:00
Joey__
www.exploit-db.com
18

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/1172/info

DNews News Server is a CGI application that gives access to auser's NNTP server over the web. There are many unchecked buffers in the program, some of which can be exploited directly from any browser. Supplying an overlylong value for the "group", "cmd" and "utag" variables, and possibly others, will overwrite their respective buffers. In this manner, arbitrary code can be executed on the remote target.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19895.zip

Related

cve 1
nvd 1
cvelist 1
openvas 1
nessus 1
cve
cve
CVE-2000-0423
2000-06-15 04:00:00
nvd
nvd
CVE-2000-0423
2000-05-05 04:00:00
cvelist
cvelist
CVE-2000-0423
2000-06-15 04:00:00
openvas
openvas
Detection of various dangerous CGI scripts (HTTP) - Active Check
2005-11-03 00:00:00
nessus
nessus
Multiple Dangerous CGI Script Detection
2003-06-17 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19895
cve1nvd1cvelist1openvas1nessus1