Published: 09/06/2005 Updated: 05/09/2008

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The fetchnews NNTP client in leafnode 1.11.2 and previous versions can hang while waiting for input that never arrives, which allows remote NNTP servers to cause a denial of service (news loss).

Vulnerable Product	Search on Vulmon	Subscribe to Product
leafnode leafnode 1.9.29
leafnode leafnode 1.9.30
leafnode leafnode 1.9.31
leafnode leafnode 1.9.32
leafnode leafnode 1.9.46
leafnode leafnode 1.9.47
leafnode leafnode 1.9.48
leafnode leafnode 1.9.52
leafnode leafnode 1.9.20
leafnode leafnode 1.9.21
leafnode leafnode 1.9.22
leafnode leafnode 1.9.23
leafnode leafnode 1.9.24
leafnode leafnode 1.9.37
leafnode leafnode 1.9.38
leafnode leafnode 1.9.39
leafnode leafnode 1.9.40
leafnode leafnode 1.11.1
leafnode leafnode 1.9.25
leafnode leafnode 1.9.27
leafnode leafnode 1.9.34
leafnode leafnode 1.9.36
leafnode leafnode 1.9.41
leafnode leafnode 1.9.43
leafnode leafnode 1.9.45
leafnode leafnode 1.9.53
leafnode leafnode 1.10.0
leafnode leafnode 1.9.19
leafnode leafnode 1.9.26
leafnode leafnode 1.9.28
leafnode leafnode 1.9.33
leafnode leafnode 1.9.35
leafnode leafnode 1.9.42
leafnode leafnode 1.9.44

Debian Bug report logs - #338886 leafnode security bug SA-2005:02 (CVE-2005-1911) Package: leafnode; Maintainer for leafnode is Moritz Muehlenhoff <jmm@debianorg>; Source for leafnode is src:leafnode (PTS, buildd, popcon) Reported by: Matthias Andree <matthiasandree@gmxde> Date: Sun, 13 Nov 2005 15:48:10 UTC Seve ...

NVD-CWE-Other http://leafnode.sourceforge.net/leafnode-SA-2005-02.txt https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=338886 https://nvd.nist.gov

CVE-2005-1911

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect