Buffer overflow

2019-02-0817:29:00

PRIOn knowledge base

www.prio-n.com

9.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.1%

JSON

A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation.

CPENameOperatorVersion
boksge6.6.0
boksle6.7.1

CPE	Name	Operator	Version
	boks	ge	6.6.0
	boks	le	6.7.1

References

community.helpsystems.com/knowledge-base/fox-technologies/hotfix/515/