Search CVE reports


Toggle filters

1 – 7 of 7 results


CVE-2020-10188

Medium priority

Some fixes available 3 of 20

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.

3 affected packages

inetutils, netkit-telnet, netkit-telnet-ssl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
inetutils Not affected Not affected Fixed Fixed Fixed
netkit-telnet Not in release Not affected Not affected Not affected Not affected
netkit-telnet-ssl Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2005-0488

Unknown priority
Not affected

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

1 affected packages

netkit-telnet

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
netkit-telnet
Show less packages

CVE-2005-0469

Unknown priority
Fixed

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

5 affected packages

heimdal, krb4, krb5, netkit-telnet, netkit-telnet-ssl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
heimdal
krb4
krb5
netkit-telnet
netkit-telnet-ssl
Show less packages

CVE-2005-0468

Unknown priority
Fixed

Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require...

3 affected packages

krb4, krb5, netkit-telnet

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
krb4
krb5
netkit-telnet
Show less packages

CVE-2004-0998

Unknown priority
Fixed

Format string vulnerability in telnetd-ssl 0.17 and earlier allows remote attackers to execute arbitrary code.

1 affected packages

netkit-telnet-ssl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
netkit-telnet-ssl
Show less packages

CVE-2004-0911

Unknown priority
Fixed

telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service (free of an invalid pointer), a different vulnerability than CVE-2001-0554.

2 affected packages

netkit-telnet, netkit-telnet-ssl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
netkit-telnet
netkit-telnet-ssl
Show less packages

CVE-2004-0640

Unknown priority
Fixed

Format string vulnerability in the SSL_set_verify function in telnetd.c for SSLtelnet daemon (SSLtelnetd) 0.13 allows remote attackers to execute arbitrary code.

1 affected packages

netkit-telnet-ssl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
netkit-telnet-ssl
Show less packages