The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
CVSS Score
6.8
EPSS Score
0.188
Published
2012-11-11
Buffer overflow in the ARTpost function in art.c in the control message handling code for INN 2.4.0 may allow remote attackers to execute arbitrary code.
CVSS Score
7.5
EPSS Score
0.353
Published
2004-02-03
Buffer overflow in INN inews program.
CVSS Score
7.5
EPSS Score
0.066
Published
1999-09-01
The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable.
CVSS Score
10.0
EPSS Score
0.007
Published
1999-05-11