6479 matches found
CVE-2005-1205
The CVE-2005-1205 issue is a documented information-disclosure vulnerability in the Microsoft Telnet client across Windows XP, Windows Server 2003, and Windows Services for UNIX. Exploitation arises from handling the Telnet NEW-ENVIRON command (SEND ENV_USERVAR), allowing a remote attacker to rea...
CVE-2005-0488
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
CVE-2005-0488
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
CVE-2005-1205
The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
CVE-2005-0488
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
CVE-2005-0488
CVE-2005-0488 affects certain BSD-based Telnet clients (including those on Solaris and SuSE Linux). The issue allows a remote attacker to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command. The connected documents confirm the vulnerability description ...
CVE-2005-1205
The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
Information Exposure
Overview Affected versions of this package are vulnerable to Information Exposure. Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR...
CVE-2005-0488
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
DEBIAN-CVE-2005-0488
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENVUSERVAR command...
MS05-033: Vulnerability in Telnet Client Could Allow Information Disclosure (896428)
The remote version of Windows contains a flaw the Telnet client that could allow an attacker to read the session variables of users connecting to a rogue telnet server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid18486; scriptversion"1.35"; scriptcvsdate"Date:...
Telnet Client Information Disclosure Vulnerability
Overview A vulnerability in the handling of the NEW-ENVIRON command allows a malicious telnet server to gain information from a client's environment variables. Description The Telnet network protocol is described in RFC854 and RFC855 as a general, bi-directional communications facility. The Telne...
Allied Telesyn Router/Switch Default Password
The remote device appears to be an Allied Telesyn router or switch that can be accessed using default credentials. An attacker could leverage this issue to gain administrative access to the affected device. This password could also be potentially used to gain other sensitive information about the...
[SECURITY] [DSA 731-1] New krb4 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 731-1 [email protected] http://www.debian.org/security/ Martin Schulze June 2nd, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 731-1] New krb4 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 731-1 [email protected] http://www.debian.org/security/ Martin Schulze June 2nd, 2005 http://www.debian.org/security/faq -...
DSA-731-1 krb4 - buffer overflows
Bulletin has no description...
CVE-2005-1771
Summary (CVE-2005-1771) Unknown vulnerability in HP-UX Trusted System on versions B.11.00–B.11.23 may allow a remote attacker to gain unauthorized access, possibly via tools like remshd or telnet -t. Connected documents tie this CVE to HP patch advisories and NASL checks (e.g., HPSBUX01165, SSRT5...
Fedora Core 2 : krb5-1.3.6-4 (2005-269)
Updated krb5 packages which fix two buffer overflow vulnerabilities in the included Kerberos-aware telnet client are now available. Kerberos is a networked authentication system which uses a trusted third-party a KDC to authenticate clients and servers to each other. The krb5-workstation package...
Fedora Core 2 : telnet-0.17-28.FC2.1 (2005-277)
Two buffer overflow flaws were discovered in the way the telnet client handles messages from a server. An attacker may be able to execute arbitrary code on a victim's machine if the victim can be tricked into connecting to a malicious telnet server. The Common Vulnerabilities and Exposures projec...
CVE-2005-1566
Acrowave AAP-3100AR wireless router allows remote attackers to bypass authentication by pressing CTRL-C at the username or password prompt in a telnet session, which causes the shell to crash and restart, then leave the user in the new shell...