CVE-2002-0525
Summary
| CVE | CVE-2002-0525 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2002-08-12 04:00:00 UTC |
| Updated | 2008-09-05 20:28:00 UTC |
| Description | Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP servers to gain privileges via format string specifiers in NTTP responses. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Isc | Inn | 2.0 | All | All | All |
| Application | Isc | Inn | 2.1 | All | All | All |
| Application | Isc | Inn | 2.2 | All | All | All |
| Application | Isc | Inn | 2.2.1 | All | All | All |
| Application | Isc | Inn | 2.2.2 | All | All | All |
| Application | Isc | Inn | 2.2.3 | All | All | All |
| Application | Isc | Inn | 2.0 | All | All | All |
| Application | Isc | Inn | 2.1 | All | All | All |
| Application | Isc | Inn | 2.2 | All | All | All |
| Application | Isc | Inn | 2.2.1 | All | All | All |
| Application | Isc | Inn | 2.2.2 | All | All | All |
| Application | Isc | Inn | 2.2.3 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| ISC INN Multiple Local Format String Vulnerabilties | BID | www.securityfocus.com | Exploit, Patch, Vendor Advisory |
| ISS X-Force Database: inn-rnews-inews-format-string (8834): INN rnews and inews format string | XF | www.iss.net | Vendor Advisory |
| Neohapsis Archives - Bugtraq - Inn (Inter Net News) security problems - From [email protected] | BUGTRAQ | archives.neohapsis.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.