Test ID:	1.3.6.1.4.1.25623.1.0.10436
Category:	Gain root remotely
Title:	INN version check (2)
Summary:	NOSUMMARY
Description:	Description: The remote version of INN is between 2.0 and 2.2.2 There is a known security flaw in this version of INN which may allow an attacker to execute arbitrary code on this server is the option 'verifycancels' is enabled in inn.conf Solution : upgrade to version 2.2.3 or make sure that the option verifycancel is disabled on this server. Risk factor : High
Cross-Ref:	BugTraq ID: 1316 Common Vulnerability Exposure (CVE) ID: CVE-2000-0472 http://www.securityfocus.com/bid/1316 Bugtraq: 20000106 innd 2.2.2 remote buffer overflow (Google Search) http://archives.neohapsis.com/archives/bugtraq/2000-06/0003.html Bugtraq: 20000707 inn update (Google Search) http://archives.neohapsis.com/archives/bugtraq/2000-07/0097.html Bugtraq: 20000721 [ANNOUNCE] INN 2.2.3 available (Google Search) http://archives.neohapsis.com/archives/bugtraq/2000-07/0298.html Bugtraq: 20000722 MDKSA-2000:023 inn update (Google Search) http://archives.neohapsis.com/archives/bugtraq/2000-07/0330.html Caldera Security Advisory: CSSA-2000-016.0 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-016.0.txt XForce ISS Database: innd-cancel-overflow(4615) https://exchange.xforce.ibmcloud.com/vulnerabilities/4615
Copyright	This script is Copyright (C) 2000 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.