Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4766 matches found

securityvulns
securityvulnsadded 2005/06/15 12:0 a.m.24 views

Multiple system telnet client information leak

Telnet server can request client's environment variables...

2.6AI score
Exploits0References2Affected Software2
securityvulns
securityvulnsadded 2005/06/15 12:0 a.m.42 views

iDEFENSE Security Advisory 06.14.05: Multiple Vendor Telnet Client Information Disclosure Vulnerability

Multiple Vendor Telnet Client Information Disclosure Vulnerability iDEFENSE Security Advisory 06.14.05 www.idefense.com/application/poi/display?id=260&type=vulnerabilities June 14, 2005 I. BACKGROUND The TELNET protocol allows virtual network terminals to be connected to over the internet. The...

5CVSS0.3AI score0.33261EPSS
Exploits0
CVE
CVEadded 2005/06/14 4:0 a.m.91 views

CVE-2005-1205

The CVE-2005-1205 issue is a documented information-disclosure vulnerability in the Microsoft Telnet client across Windows XP, Windows Server 2003, and Windows Services for UNIX. Exploitation arises from handling the Telnet NEW-ENVIRON command (SEND ENV_USERVAR), allowing a remote attacker to rea...

5CVSS6.3AI score0.33261EPSS
Exploits0References9Affected Software1
Cvelist
Cvelistadded 2005/06/14 4:0 a.m.24 views

CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

9.2AI score0.16815EPSS
Exploits0References19
NVD
NVDadded 2005/06/14 4:0 a.m.22 views

CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

5CVSS9.2AI score0.16815EPSS
Exploits0References19
Cvelist
Cvelistadded 2005/06/14 4:0 a.m.25 views

CVE-2005-1205

The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

6.3AI score0.33261EPSS
Exploits0References9
NVD
NVDadded 2005/06/14 4:0 a.m.26 views

CVE-2005-1205

The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

5CVSS6.4AI score0.33261EPSS
Exploits0References9
UbuntuCve
UbuntuCveadded 2005/06/14 4:0 a.m.46 views

CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

5CVSS7.2AI score0.16815EPSS
Exploits0References1
CVE
CVEadded 2005/06/14 4:0 a.m.79 views

CVE-2005-0488

CVE-2005-0488 affects certain BSD-based Telnet clients (including those on Solaris and SuSE Linux). The issue allows a remote attacker to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command. The connected documents confirm the vulnerability description ...

5CVSS9.2AI score0.16815EPSS
Exploits0References19Affected Software2
Debian CVE
Debian CVEadded 2005/06/14 4:0 a.m.26 views

CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

5CVSS6.2AI score0.16815EPSS
Exploits0
OSV
OSVadded 2005/06/14 4:0 a.m.2 views

DEBIAN-CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

5CVSS8AI score0.16815EPSS
Exploits0References1
OSV
OSVadded 2005/06/14 4:0 a.m.7 views

CVE-2005-0488

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...

9.3AI score
Exploits0References23
CERT
CERTadded 2005/06/14 12:0 a.m.104 views

Telnet Client Information Disclosure Vulnerability

Overview A vulnerability in the handling of the NEW-ENVIRON command allows a malicious telnet server to gain information from a client's environment variables. Description The Telnet network protocol is described in RFC854 and RFC855 as a general, bi-directional communications facility. The Telne...

9.4AI score
Exploits0References5
RedHat Linux
RedHat Linuxadded 2005/04/22 8:17 p.m.2 views

security flaw

Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline...

1.2CVSS5.8AI score0.00391EPSS
Exploits0References4
securityvulns
securityvulnsadded 2005/04/08 12:0 a.m.22 views

SCO OpenServer Unix multiple shells buffer overflow

termsh, atcronsh, auditsh buffer overflow during environment variables parsing...

4.9AI score
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2005/03/01 5:0 a.m.32 views

CVE-2004-1051

sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname...

7.2CVSS6.2AI score0.01374EPSS
Exploits0References1
OSV
OSVadded 2005/03/01 5:0 a.m.1 views

DEBIAN-CVE-2004-1051

sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname...

7.2CVSS7.4AI score0.01374EPSS
Exploits0References1
OSV
OSVadded 2005/03/01 5:0 a.m.7 views

CVE-2004-1051

sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname...

6.9AI score
Exploits0References11
Tenable Nessus
Tenable Nessusadded 2005/03/01 12:0 a.m.24 views

GLSA-200502-31 : uim: Privilege escalation vulnerability

The remote host is affected by the vulnerability described in GLSA-200502-31 uim: Privilege escalation vulnerability Takumi Asaki discovered that uim insufficiently checks environment variables. setuid/setgid applications linked against libuim could end up executing arbitrary code. This...

4.6CVSS6AI score0.0036EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2005/02/21 5:0 a.m.28 views

CVE-2005-0503

uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges...

4.6CVSS5.9AI score0.0036EPSS
Exploits0References1
Rows per page
Query Builder