NNTP: Vulnerable ISC INN Version (< 2.2.2)
This signature detects attempts to exploit a known vulnerability against Internet Software Consortium InterNetNews (ISC INN) server versions earlier than 2.2.2. These versions contain buffer overflow vulnerabilities. Attackers can remotely execute malicious code on the server.
Extended Description
The Inter Net News (INN) server does not do proper bounds checking. The daemon could be crashed remotely by overflowing the static buffers.
Affected Products
Isc inn
References
BugTraq: 1249
CVE: CVE-2000-0360
URL: http://www.securityfocus.com/advisories/2007 http://www.securityfocus.com/advisories/1889
Short Name
NNTP:VULN:ISC-2-2-2
Severity
Info
Recommended
False
Recommended Action
None
Category
NNTP
Keywords
(< 2.2.2) CVE-2000-0360 INN ISC Version Vulnerable bid:1249
Release Date
02/11/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Rarely
Vendors
Isc
CVSS Score
5.0