Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-4862HistoryDec 25, 2011 - 1:55 a.m.
CVE-2011-4862
2011-12-2501:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.8%
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | heimdal | < 1.5.dfsg.1-1 | heimdal_1.5.dfsg.1-1_all.deb |
| Debian | 11 | all | heimdal | < 1.5.dfsg.1-1 | heimdal_1.5.dfsg.1-1_all.deb |
| Debian | 10 | all | heimdal | < 1.5.dfsg.1-1 | heimdal_1.5.dfsg.1-1_all.deb |
| Debian | 999 | all | heimdal | < 1.5.dfsg.1-1 | heimdal_1.5.dfsg.1-1_all.deb |
| Debian | 13 | all | heimdal | < 1.5.dfsg.1-1 | heimdal_1.5.dfsg.1-1_all.deb |
| Debian | 12 | all | inetutils | < 2:1.8-6 | inetutils_2:1.8-6_all.deb |
| Debian | 11 | all | inetutils | < 2:1.8-6 | inetutils_2:1.8-6_all.deb |
| Debian | 10 | all | inetutils | < 2:1.8-6 | inetutils_2:1.8-6_all.deb |
| Debian | 999 | all | inetutils | < 2:1.8-6 | inetutils_2:1.8-6_all.deb |
| Debian | 13 | all | inetutils | < 2:1.8-6 | inetutils_2:1.8-6_all.deb |
Related
nessus
nessus
RHEL 5 : krb5 (RHSA-2011:1853)
2013-01-24 00:00:00
RHEL 6 : krb5-appl (RHSA-2011:1852)
2011-12-28 00:00:00
prion
prion
Buffer overflow
2011-12-25 01:55:00
openvas
openvas
RedHat Update for krb5-appl RHSA-2011:1852-02
2012-07-09 00:00:00
RedHat Update for krb5 RHSA-2011:1851-01
2011-12-30 00:00:00
CentOS Update for krb5-devel CESA-2011:1851 centos4
2012-07-30 00:00:00
seebug
seebug
FreeBSD 'telnetd'守护进程远程缓冲区溢出漏洞
2011-12-26 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:05:32
saint
saint
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
packetstorm
packetstorm
FreeBSD telnetd Remote Root
2012-01-16 00:00:00
FreeBSD Telnet Service Encyption Key ID Buffer Overflow
2011-12-28 00:00:00
Linux BSD-derived Telnet Service Encyption Key ID Buffer Overflow
2011-12-28 00:00:00
debian
debian
[SECURITY] [DSA 2375-1] krb5. krb5-appl security update
2011-12-26 13:18:10
[SECURITY] [DSA 2373-1] inetutils security update
2011-12-25 17:15:34
[SECURITY] [DSA 2372-1] heimdal security update
2011-12-25 17:14:18
ubuntucve
ubuntucve
CVE-2011-4862
2011-12-25 00:00:00
cve
cve
CVE-2011-4862
2011-12-25 01:55:00
gentoo
gentoo
Heimdal: Arbitrary code execution
2012-02-22 00:00:00
MIT Kerberos 5 Applications: Multiple vulnerabilities
2012-01-23 00:00:00
redhat
redhat
(RHSA-2011:1851) Critical: krb5 security update
2011-12-27 00:00:00
(RHSA-2011:1853) Critical: krb5 security update
2011-12-28 00:00:00
(RHSA-2011:1852) Critical: krb5-appl security update
2011-12-27 00:00:00
zdt
zdt
Cisco Ironport WSA telnetd Remote Code Execution Vulnerability
2014-10-24 00:00:00
oraclelinux
oraclelinux
krb5-appl security update
2011-12-27 00:00:00
krb5 security update
2011-12-27 00:00:00
krb5 security and bug fix update
2012-03-01 00:00:00
securityvulns
securityvulns
MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]
2012-01-02 00:00:00
MIT / FreeBSD / Cisco telnetd buffer overflow
2012-01-30 00:00:00
FreeBSD Security Advisory FreeBSD-SA-11:08.telnetd
2012-01-02 00:00:00
suse
suse
Security update for heimdal (important)
2012-01-05 12:08:59
Security update for heimdal (important)
2012-01-05 12:36:30
Security update for Kerberos 5 (important)
2012-01-05 12:36:16
freebsd
freebsd
krb5-appl -- telnetd code execution vulnerability
2011-12-23 00:00:00
centos
centos
krb5 security update
2011-12-27 20:44:52
krb5 security update
2011-12-27 21:11:42
freebsd_advisory
freebsd_advisory
FreeBSD-SA-11:08.telnetd
2011-12-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Multiple Vendors BSD telnetd Encryption Key Buffer Overflow (CVE-2011-4862)
2012-05-14 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: krb5-appl-1.0.2-2.fc16
2012-01-05 21:03:02
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-8.fc15
2012-01-05 20:57:26
cisco
cisco
Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability
2012-01-26 17:00:00
vmware
vmware
VMware ESXi and ESX address several security issues
2012-03-29 00:00:00
VMware ESXi and ESX address several security issues
2012-03-29 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.8%
Related for DEBIANCVE:CVE-2011-4862