Known Vulnerabilities for Inn by Isc

Listed below are 10 of the newest known vulnerabilities associated with "Inn" by "Isc".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2012-3523 The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-mi... 6.8 - MEDIUM 2012-11-11 2013-02-22
CVE-2004-0045 Buffer overflow in the ARTpost function in art.c in the control message handling code for INN 2.4.0 may allow remote attacker... 7.5 - HIGH 2004-02-03 2017-10-10
CVE-2002-0525 Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 and earlier allow local users and remote malicious NNTP... 10 - HIGH 2002-08-12 2008-09-05
CVE-2001-1442 Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges ... 4.6 - MEDIUM 2001-04-21 2017-07-11
CVE-2000-0472 Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long me... 3.6 - LOW 2000-02-06 2017-10-10
CVE-2000-0360 Buffer overflow in INN 2.2.1 and earlier allows remote attackers to cause a denial of service via a maliciously formatted art... 5 - MEDIUM 2000-10-20 2008-09-10
CVE-1999-0705 Buffer overflow in INN inews program. 7.5 - HIGH 1999-09-01 2008-09-09
CVE-1999-0247 Buffer overflow in nnrpd program in INN up to version 1.6 allows remote users to execute arbitrary commands. 7.5 - HIGH 1997-07-21 2008-09-09
CVE-1999-0100 Remote access in AIX innd 1.5.1, using control messages. 10 - HIGH 1997-01-01 2022-08-17
CVE-1999-0043 Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others. 10 - HIGH 1996-12-04 2022-08-17
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationIscInn2.4.0AllAllAll
ApplicationIscInn2.2.3AllAllAll
ApplicationIscInn2.2.2AllAllAll
ApplicationIscInn2.2.1AllAllAll
ApplicationIscInn2.2AllAllAll
ApplicationIscInn2.1AllAllAll
ApplicationIscInn2.0AllAllAll
ApplicationIscInn1.7.2AllAllAll
ApplicationIscInn1.7AllAllAll
ApplicationIscInn1.5.1AllAllAll
ApplicationIscInn1.5AllAllAll
ApplicationIscInn1.4unoff4AllAllAll
ApplicationIscInn1.4unoff3AllAllAll
ApplicationIscInn1.4sec2AllAllAll
ApplicationIscInn1.4secAllAllAll
ApplicationIscInn1.4AllAllAll
ApplicationIscInn-AllAllAll
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report