Описание
Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.
Ссылки
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.1.1 (включая)
cpe:2.3:a:newspost:newspost:*:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.45619
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
больше 20 лет назад
Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.
debian
больше 20 лет назад
Buffer overflow in the socket_getline function in Newspost 2.1.1 and e ...
github
больше 3 лет назад
Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.
EPSS
Процентиль: 98%
0.45619
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other