INN version 2.2 and earlier have a buffer overflow condition in inews program allowing any attacker to gain news group privileges.