CVE-2005-0101 | Vulnerability Database | Aqua Security

Buffer overflow in the socket_getline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character.

Affected Software

Name	Vendor	Start Version	End Version
Newspost	Newspost	*	2.1.1 (including)
Newspost	Ubuntu	dapper	*
Newspost	Ubuntu	devel	*
Newspost	Ubuntu	edgy	*
Newspost	Ubuntu	feisty	*

References

http://marc.info/?l=bugtraq\u0026m=110746336728781\u0026w=2
http://people.freebsd.org/~niels/issues/newspost-20050114.txt
http://secunia.com/advisories/14092/
http://secunia.com/advisories/14098
http://security.gentoo.org/glsa/glsa-200502-05.xml
http://securitytracker.com/id?1013056
http://www.securityfocus.com/bid/12418
http://www.vuxml.org/freebsd/7f13607b-6948-11d9-8937-00065be4b5b6.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/19178
http://marc.info/?l=bugtraq\u0026m=110746336728781\u0026w=2
http://people.freebsd.org/~niels/issues/newspost-20050114.txt
http://secunia.com/advisories/14092/
http://secunia.com/advisories/14098
http://security.gentoo.org/glsa/glsa-200502-05.xml
http://securitytracker.com/id?1013056
http://www.securityfocus.com/bid/12418
http://www.vuxml.org/freebsd/7f13607b-6948-11d9-8937-00065be4b5b6.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/19178

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0101
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html