Inn@2.2.2 Security Vulnerabilities and Issues — Inn@2.2.2 CVE List

Lucene search

IscInn2.2.2

4 matches found

CVE•added 2005/04/21 4:0 a.m.•54 views

CVE-2001-1442

Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument.

4.6CVSS6.9AI score0.0044EPSS

CVE•added 2002/08/12 4:0 a.m.•52 views

CVE-2002-0525

Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses.

10CVSS7.4AI score0.02083EPSS

CVE•added 2012/11/11 1:0 p.m.•49 views

CVE-2012-3523

The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" a...

6.8CVSS6.8AI score0.6945EPSS

CVE•added 2000/10/13 4:0 a.m.•43 views

CVE-2000-0472

Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID.

3.6CVSS7.8AI score0.04931EPSS