CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2002-0525

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0700%
EPSS Percentile12.21th
Published2002年8月12日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses.

Affected Platforms (CPE)

📦
Isc

Inn

= 2.0
📦
Isc

Inn

= 2.1
📦
Isc

Inn

= 2.2
📦
Isc

Inn

= 2.2.1
📦
Isc

Inn

= 2.2.2
📦
Isc

Inn

= 2.2.3

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-04/0140.html
🔗 http://www.iss.net/security_center/static/8834.php
🔗 http://www.securityfocus.com/bid/4501
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-04/0140.html
🔗 http://www.iss.net/security_center/static/8834.php
🔗 http://www.securityfocus.com/bid/4501

相關漏洞威脅

CVE-1999-075410.0

The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF en...

CVE-2021-416629.8

The South Gate Inn Online Reservation System v1.0 contains an SQL injection vulnerability that can be chained with a malicious PHP...

CVE-2021-414719.8

SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execut...

CVE-1999-00439.8

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.