builtins.c in Xinetd prior to 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote malicious users to bypass intended access restrictions via a request to tcpmux port 1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xinetd xinetd 2.3.9 |
||
xinetd xinetd 2.3.8 |
||
xinetd xinetd 2.3.11 |
||
xinetd xinetd 2.3.10 |
||
xinetd xinetd 2.3.7 |
||
xinetd xinetd 2.3.6 |
||
xinetd xinetd 2.3.13 |
||
xinetd xinetd 2.3.12 |
||
xinetd xinetd 2.3.5 |
||
xinetd xinetd |