CVE-1999-0043

CRITICAL

ISC Inn - OS Command Injection

Title source: rule

Description

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.

References (1)

Scores

CVSS v3 9.8
EPSS 0.0158
EPSS Percentile 81.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-78
Status draft

Affected Products (14)

isc/inn
isc/inn
isc/inn
isc/inn
isc/inn
netscape/news_server
bsdi/bsd_os
caldera/openlinux
redhat/linux
redhat/linux
nec/goah_intrasv
nec/goah_networksv
nec/goah_networksv
nec/goah_networksv

Timeline

Published Dec 04, 1996
Tracked Since Feb 18, 2026