Slrn Development Team: >> Slrn Security Vulnerabilities
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
CVSS Score
7.2
EPSS Score
0.002
Published
2002-08-12
Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post.
CVSS Score
7.5
EPSS Score
0.01
Published
2001-09-24