Telnetd telnet server in IRIX 5.2 up to and including 6.1 does not properly cleans user-injected format strings, which allows remote malicious users to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sgi irix 6.4 |
||
sgi irix 6.5 |
||
sgi irix 6.5.1 |
||
sgi irix 6.5.2m |
||
sgi irix 6.1 |
||
sgi irix 6.3 |
||
sgi irix 6.5.3 |
||
sgi irix 6.5.3m |
||
sgi irix 5.3 |
||
sgi irix 6.0 |
||
sgi irix 6.0.1 |
||
sgi irix 6.5.6 |
||
sgi irix 6.5.7 |
||
sgi irix 6.5.8 |
||
sgi irix 5.2 |
||
sgi irix 6.2 |
||
sgi irix 6.5.3f |
||
sgi irix 6.5.4 |