CVE-2004-2068

fetchnews in leafnode 1.9.47 and earlier allows remote attackers to cause a denial of service (process hang) via an empty NNTP news article with missing mandatory headers.

Affected Software

Name	Vendor	Start Version	End Version
Leafnode	Leafnode	1.9.25 (including)	1.9.25 (including)
Leafnode	Leafnode	1.9.26 (including)	1.9.26 (including)
Leafnode	Leafnode	1.9.27 (including)	1.9.27 (including)
Leafnode	Leafnode	1.9.28 (including)	1.9.28 (including)
Leafnode	Leafnode	1.9.29 (including)	1.9.29 (including)
Leafnode	Leafnode	1.9.30 (including)	1.9.30 (including)
Leafnode	Leafnode	1.9.31 (including)	1.9.31 (including)
Leafnode	Leafnode	1.9.32 (including)	1.9.32 (including)
Leafnode	Leafnode	1.9.33 (including)	1.9.33 (including)
Leafnode	Leafnode	1.9.34 (including)	1.9.34 (including)
Leafnode	Leafnode	1.9.35 (including)	1.9.35 (including)
Leafnode	Leafnode	1.9.36 (including)	1.9.36 (including)
Leafnode	Leafnode	1.9.37 (including)	1.9.37 (including)
Leafnode	Leafnode	1.9.38 (including)	1.9.38 (including)
Leafnode	Leafnode	1.9.39 (including)	1.9.39 (including)
Leafnode	Leafnode	1.9.40 (including)	1.9.40 (including)
Leafnode	Leafnode	1.9.41 (including)	1.9.41 (including)
Leafnode	Leafnode	1.9.42 (including)	1.9.42 (including)
Leafnode	Leafnode	1.9.43 (including)	1.9.43 (including)
Leafnode	Leafnode	1.9.44 (including)	1.9.44 (including)
Leafnode	Leafnode	1.9.45 (including)	1.9.45 (including)
Leafnode	Leafnode	1.9.46 (including)	1.9.46 (including)
Leafnode	Leafnode	1.9.47 (including)	1.9.47 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2068
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References