Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-0469

Published: 02/05/2005 Updated: 11/10/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Telnet

Vulnerability Summary

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote malicious users to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ncsa telnet

Vendor Advisories

Red Hat: telnet security update
Synopsis telnet security update Type/Severity Security Advisory: Important Topic Updated telnet packages that fix two buffer overflow vulnerabilities arenow availableThis update has been rated as having important security impact by the RedHat Security Response Team Description The telnet ...
Red Hat: krb5 security update
Synopsis krb5 security update Type/Severity Security Advisory: Important Topic Updated krb5 packages which fix two buffer overflow vulnerabilities in theincluded Kerberos-aware telnet client are now availableThis update has been rated as having important security impact by the RedHat Security Response Team ...
Ubuntu Security Notice: krb4, krb5 vulnerabilities
Ga�l Delalleau discovered a buffer overflow in the env_opt_add() function of the Kerberos 4 and 5 telnet clients By sending specially crafted replies, a malicious telnet server could exploit this to execute arbitrary code with the privileges of the user running the telnet client (CVE-2005-0468) ...
Ubuntu Security Notice: netkit-telnet vulnerabilities
A buffer overflow was discovered in the telnet client’s handling of the LINEMODE suboptions By sending a specially constructed reply containing a large number of SLC (Set Local Character) commands, a remote attacker (i e a malicious telnet server) could execute arbitrary commands with the privileges of the user running the telnet client (CAN- ...
Debian Security Advisories: DSA-699-1 netkit-telnet-ssl -- buffer overflow
Gaël Delalleau discovered a buffer overflow in the handling of the LINEMODE suboptions in telnet clients This can lead to the execution of arbitrary code when connected to a malicious server For the stable distribution (woody) this problem has been fixed in version 01717+01-2woody4 For the unstable distribution (sid) these problems have been ...
Debian Security Advisories: DSA-731-1 krb4 -- buffer overflows
Several problems have been discovered in telnet clients that could be exploited by malicious daemons the client connects to The Common Vulnerabilities and Exposures project identifies the following problems: CAN-2005-0468 Gaël Delalleau discovered a buffer overflow in the env_opt_add() function that allow a remote attacker to execute arb ...
Debian Security Advisories: DSA-697-1 netkit-telnet -- buffer overflow
Gaël Delalleau discovered a buffer overflow in the handling of the LINEMODE suboptions in telnet clients This can lead to the execution of arbitrary code when connected to a malicious server For the stable distribution (woody) this problem has been fixed in version 017-18woody3 For the unstable distribution (sid) this problem has been fixed in ...

References

NVD-CWE-Otherhttp://www.idefense.com/application/poi/display?id=220&type=vulnerabilitiesftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:01.telnet.aschttp://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-001-telnet.txthttp://www.debian.org/security/2005/dsa-697http://www.debian.org/security/2005/dsa-699http://www.debian.org/security/2005/dsa-703http://www.gentoo.org/security/en/glsa/glsa-200503-36.xmlhttp://www.redhat.com/support/errata/RHSA-2005-327.htmlhttp://www.redhat.com/support/errata/RHSA-2005-330.htmlftp://patches.sgi.com/support/free/security/advisories/20050405-01-Phttp://sunsolve.sun.com/search/document.do?assetkey=1-26-57755-1http://www.kb.cert.org/vuls/id/291924http://www.debian.de/security/2005/dsa-731http://secunia.com/advisories/14745http://sunsolve.sun.com/search/document.do?assetkey=1-26-57761-1http://www.ubuntulinux.org/usn/usn-224-1http://secunia.com/advisories/17899http://www.securityfocus.com/bid/12918http://sunsolve.sun.com/search/document.do?assetkey=1-26-101671-1http://sunsolve.sun.com/search/document.do?assetkey=1-26-101665-1http://www.mandriva.com/security/advisories?name=MDKSA-2005:061https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9708https://access.redhat.com/errata/RHSA-2005:327https://nvd.nist.govhttps://usn.ubuntu.com/224-1/https://www.kb.cert.org/vuls/id/291924
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook