CVE-2000-0472

ISC Inn - Buffer Overflow

Title source: rule

Description

Buffer overflow in innd 2.2.2 allows remote attackers to execute arbitrary commands via a cancel request containing a long message ID.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michal Zalewski · cremotelinux

https://www.exploit-db.com/exploits/19998

View Code ZIP pw:eip

References (7)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-06/0003.html

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-07/0097.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/4615

[Various Sources] ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-016.0.txt

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-07/0298.html

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2000-07/0330.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/1316

Scores

EPSS 0.0493

EPSS Percentile 89.7%

Details

Status published

Products (5)

isc/inn 2.0

isc/inn 2.1

isc/inn 2.2

isc/inn 2.2.1

isc/inn 2.2.2

Published Feb 06, 2000

Tracked Since Feb 18, 2026