CVE-2001-1442

ISC InterNetNews <2.3.0 - Privilege Escalation

Title source: llm

Description

Buffer overflow in innfeed for ISC InterNetNews (INN) before 2.3.0 allows local users in the "news" group to gain privileges via a long -c command line argument.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Enrique A. · bashlocallinux

https://www.exploit-db.com/exploits/20778

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Enrique A. · clocallinux

https://www.exploit-db.com/exploits/20777

View Code ZIP pw:eip

nomisec WORKING POC

by alt3kx · poc

https://github.com/alt3kx/CVE-2001-1442

View Code ZIP pw:eip

References (6)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2001-04/0311.html

[Exploit] http://securitytracker.com/id?1001353

[US Government Resource] http://www.kb.cert.org/vuls/id/943536

[Exploit, Patch] http://www.securityfocus.com/archive/1/178011

[Exploit, Patch] http://www.securityfocus.com/bid/2620

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/6398

Scores

EPSS 0.0044

EPSS Percentile 63.2%

Details

Status published

Products (6)

isc/inn 2.0

isc/inn 2.1

isc/inn 2.2

isc/inn 2.2.1

isc/inn 2.2.2

isc/inn 2.2.3

Published Apr 21, 2001

Tracked Since Feb 18, 2026