VULHUB ™

Kim Storm nn is a menu based NNTP (Net News Transfer Protocol) news reader designed for use with Unix and Linux variant operating environments. It has been reported that versions 6.6.3 and earlier of nn are vulnerable to a remote format string vulnerability. This may be exploited by remote attackers to potentially execute arbitrary instructions with the privileges of the nn process. The vulnerability is a result of nn displaying error messages on the vulnerable system without proper checks. The vulnerability occurs in the nn_exitmsg() function.

Kim Storm nn is a menu based NNTP (Net News Transfer Protocol) news reader designed for use with Unix and Linux variant operating environments. It has been reported that versions 6.6.3 and earlier of nn are vulnerable to a remote format string vulnerability. This may be exploited by remote attackers to potentially execute arbitrary instructions with the privileges of the nn process. The vulnerability is a result of nn displaying error messages on the vulnerable system without proper checks. The vulnerability occurs in the nn_exitmsg() function.