FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2003-0744

This CVE name corresponds to:

Entered Topic
2004-05-21 leafnode fetchnews denial-of-service triggered by missing header

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2003-0744
Phase Assigned(20030904)

Description

The fetchnews NNTP client in leafnode 1.9.3 to 1.9.41 allows remote attackers to cause a denial of service (process hang and termination) via certain malformed Usenet news articles that cause fetchnews to hang while waiting for input.

References

Source Reference
VULNWATCH 20030903 leafnode 1.9.3 - 1.9.41 security announcement SA-2003-01
BUGTRAQ 20030904 leafnode 1.9.3 - 1.9.41 security announcement SA-2003-01
CONFIRM http://leafnode.sourceforge.net/leafnode-SA-2003-01.txt
BID 8541
OSVDB 6452
SECUNIA 9678