Published: 27/06/2001 Updated: 19/12/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader prior to 0.9.7.0 allows remote malicious users to execute arbitrary commands via a long message header.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mandrakesoft mandrake linux 6.1
mandrakesoft mandrake linux 7.0
mandrakesoft mandrake linux 6.0
redhat linux 7.0
debian debian linux
mandrakesoft mandrake linux corporate server 1.0.1
redhat linux 6.2
mandrakesoft mandrake linux 7.1
mandrakesoft mandrake linux 7.2

Bill Nottingham reported a problem in the wrapping/unwrapping functions of the slrn newsreader A long header in a message might overflow a buffer, which could result in executing arbitrary code encoded in the message The default configuration does not have wrapping enable, but it can easily be enabled either by changing the configuration or press ...

NVD-CWE-Other http://www.debian.org/security/2001/dsa-040 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-028.php3 http://www.redhat.com/support/errata/RHSA-2001-028.html http://archives.neohapsis.com/archives/freebsd/2001-04/0610.html http://www.securityfocus.com/bid/2493 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000383 http://marc.info/?l=bugtraq&m=98471253131191&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/6213 https://www.debian.org/security/./dsa-040 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0441

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect