Vulnerabilities > CVE-2001-0441 - Buffer Overflow vulnerability in SLRN Long Header

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

debian

mandrakesoft

redhat

nessus

NVD

Published: 2001-06-27

Updated: 2017-12-19

Summary

Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header.

Vulnerable Configurations

Part	Description	Count
OS	Debian Debian Debian Linux - Debian Debian Linux 0.9.1 Debian Debian Linux 0.9.2 Debian Debian Linux 0.9.3 Debian Debian Linux 0.9.4 Debian Debian Linux 0.93 Debian Debian Linux 1.1 Debian Debian Linux 1.2 Debian Debian Linux 1.3 Debian Debian Linux 1.3.1 Debian Debian Linux 2.0 Debian Debian Linux 2.0.5 Debian Debian Linux 2.0.34 Debian Debian Linux 2.1 Debian Debian Linux 2.1.8.8.P3-1.1 Debian Debian Linux 2.2	16
OS	Mandrakesoft Mandrakesoft Mandrake Linux 6.0 Mandrakesoft Mandrake Linux 6.1 Mandrakesoft Mandrake Linux 7.0 Mandrakesoft Mandrake Linux 7.1 Mandrakesoft Mandrake Linux 7.2 Mandrakesoft Mandrake Linux Corporate Server 1.0.1	6
OS	Redhat Redhat Linux 6.2 Redhat Linux 7.0	2

Nessus

NASL family	Mandriva Local Security Checks
NASL id	MANDRAKE_MDKSA-2001-028.NASL
description	A buffer overflow exists in versions of the slrn news reader prior to 0.9.6.3pl4 as reported by Bill Nottingham. This problem exists in the wrapping/unwrapping functions and a long header in a message might overflow a buffer which could result in execution of arbitrary code encoded in the message.
last seen	2020-06-01
modified	2020-06-02
plugin id	61902
published	2012-09-06
reporter	This script is Copyright (C) 2012-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/61902
title	Mandrake Linux Security Advisory : slrn (MDKSA-2001:028)

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-040.NASL
description	Bill Nottingham reported a problem in the wrapping/unwrapping functions of the slrn newsreader. A long header in a message might overflow a buffer, which could result in executing arbitrary code encoded in the message. The default configuration does not have wrapping enable, but it can easily be enabled either by changing the configuration or pressing W while viewing a message.
last seen	2020-06-01
modified	2020-06-02
plugin id	14877
published	2004-09-29
reporter	This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/14877
title	Debian DSA-040-1 : slrn - buffer overflow

Redhat

advisories

rhsa

id	RHSA-2001:028

Summary

Vulnerable Configurations

Nessus

Redhat

References