PT-2002-2510 · Nn · Nn

Publicado

2002-12-31

Atualizado

2008-09-05

CVE-2002-1788

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions nn versions 6.6.0 through 6.6.3

Description The issue allows remote NNTP servers to execute arbitrary code via format strings in server responses. This is due to a format string vulnerability in the nn exitmsg function.

Recommendations For nn versions 6.6.0 through 6.6.3, consider updating to a version that contains a fix for this issue, as the current version allows for the execution of arbitrary code. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-1788

PT-2002-2510 · Nn · Nn

CVE-2002-1788

Identificadores relacionados

Produtos afetados

Referências · 8