Slrn Development Team » Slrn : Security Vulnerabilities, CVEs, CVSS score >= 5
Buffer overflow in slrnpull for the SLRN package, when installed setuid or setgid, allows local users to gain privileges via a long -d (SPOOLDIR) argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2002-08-12
Updated
2008-09-05
Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post.
Max CVSS
7.5
EPSS Score
1.40%
Published
2001-09-24
Updated
2017-10-10
2 vulnerabilities found