CVE-2004-2068
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2004
Last modified:
03/04/2025
Description
fetchnews in leafnode 1.9.47 and earlier allows remote attackers to cause a denial of service (process hang) via an empty NNTP news article with missing mandatory headers.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:leafnode:leafnode:1.9.25:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.26:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.27:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.28:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.29:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.30:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.31:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.32:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.33:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.34:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.35:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.36:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.37:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.38:*:*:*:*:*:*:* | ||
| cpe:2.3:a:leafnode:leafnode:1.9.39:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://leafnode.sourceforge.net/leafnode-SA-2004-01.txt
- http://secunia.com/advisories/10590
- http://www.derkeiler.com/Mailing-Lists/VulnWatch/2004-01/0009.html
- http://www.osvdb.org/3441
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14189
- http://leafnode.sourceforge.net/leafnode-SA-2004-01.txt
- http://secunia.com/advisories/10590
- http://www.derkeiler.com/Mailing-Lists/VulnWatch/2004-01/0009.html
- http://www.osvdb.org/3441
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14189