GEN:SID 1:2245
Message WEB-MISC Webnews.exe access
Summary This event is generated when an attempt is made to exploit a known vulnerability in NetWin WebNEWS.
Impact Execution of arbitrary code. Possible unauthorized access to the target
host.
Detailed Information WebNEWS allows access to news groups via a web interface. Certain
versions of the application suffer from a buffer overflow condition such
that a user supplied group name longer than 1500 characters may allow
the attacker to execute code of his choosing with the privileges of the
user running the web server.
Affected Systems NetWin WebNEWS 1.1 j
    NetWin WebNEWS 1.1 i
    NetWin WebNEWS 1.1 h
Attack Scenarios The attacker would need to supply a long news group name of over 1500
characters to cause the overflow which may then present the attacker
with the opportunity to execute code.
Ease of Attack Moderate.
Corrective Action Upgrade to the latest non-affected version of the software.
Additional References  
Rule References bugtraq: 4124
cve: 2002-0290
nessus: 11732