5 matches found
Debian DSA-040-1 : slrn - buffer overflow
Bill Nottingham reported a problem in the wrapping/unwrapping functions of the slrn newsreader. A long header in a message might overflow a buffer, which could result in executing arbitrary code encoded in the message. The default configuration does not have wrapping enable, but it can easily be...
Debian DSA-078-1 : slrn - remote command invocation
Byrial Jensen found a nasty problem in slrn a threaded news reader. The notice on slrn-announce describes it as follows : When trying to decode binaries, the built-in code executes any shell scripts the article might contain, apparently assuming they would be some kind of self-extracting archive...
CVE-2001-1035
Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post...
CVE-2001-1035
Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post...
Дырка в slrn (buffer overflow)
Переполнение буфера при длинном заголовке сообщения...