CVE-2004-0640

2004-08-0604:00:00

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.027

Percentile

90.5%

JSON

Format string vulnerability in the SSL_set_verify function in telnetd.c for SSLtelnet daemon (SSLtelnetd) 0.13 allows remote attackers to execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Debian12allnetkit-telnet-ssl< 0.17.24+0.1-2netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian11allnetkit-telnet-ssl< 0.17.24+0.1-2netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian999allnetkit-telnet-ssl< 0.17.24+0.1-2netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian13allnetkit-telnet-ssl< 0.17.24+0.1-2netkit-telnet-ssl_0.17.24+0.1-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	netkit-telnet-ssl	< 0.17.24+0.1-2	netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian	11	all	netkit-telnet-ssl	< 0.17.24+0.1-2	netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian	999	all	netkit-telnet-ssl	< 0.17.24+0.1-2	netkit-telnet-ssl_0.17.24+0.1-2_all.deb
Debian	13	all	netkit-telnet-ssl	< 0.17.24+0.1-2	netkit-telnet-ssl_0.17.24+0.1-2_all.deb