CVE-2001-0667

Internet Explorer 6 and earlier, when used with the Telnet client in Services for Unix SFU 2.0, allows remote attackers to execute commands by spawning Telnet with a log file option on the command line and writing arbitrary code into an executable file which is later executed, aka a new variant o...

CVE-2000-0892

Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL...

CVE-2000-0581

Windows 2000 Telnet Server allows remote attackers to cause a denial of service by sending a continuous stream of binary zeros, which causes the server to crash...

CVE-2000-1111

Telnet Service for Windows 2000 Professional does not properly terminate incomplete connection attempts, which allows remote attackers to cause a denial of service by connecting to the server and not providing any input...

CVE-2000-0581

The affected component is Windows 2000 Telnet Server. The vulnerability arises when the Telnet Server processes a continuous stream of binary zeros from a remote attacker, which leads to a denial-of-service and causes the server to crash. There are no additional details on affected subcomponents,...

CVE-1999-1336

The CVE-1999-1336 entry concerns a vulnerability in 3Com HiPer Access Router Card (HiperARC) versions 4.0–4.2.29 that allows a remote attacker to cause a denial of service (reboot) by flooding the telnet port with IAC packets. The cited sources confirm the affected device family and the attack ve...

CVE-1999-1098

Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing...

CVE-2001-0554

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT Are You There, which is not properly handled by the telrcv function...

CVE-2001-0757

Cisco 6400 NRP2 (Access Concentrator Node Route Processor 2) is affected on IOS releases earlier than 12.1(05)DC01. The module lets Telnet access occur when no vty password is set, enabling a remote attacker to gain unauthorized access and potentially modify device configuration or affect traffic...

CVE-2000-1111

CVE-2000-1111 affects Telnet Service on Windows 2000 Professional. The issue arises because incomplete connection termination is not handled properly, allowing a remote attacker to trigger a denial-of-service by connecting to the server and providing no input. The public records (NVD, CVE list, E...

CVE-1999-1032

Vulnerability in LAT/Telnet Gateway lattelnet on Ultrix 4.1 and 4.2 allows attackers to gain root privileges...

CVE-1999-1032

CVE-1999-1032 concerns a vulnerability in the LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 that allows attackers to obtain root privileges. The available documents identify the affected software (LAT/Telnet Gateway on Ultrix 4.1/4.2) and the outcome (root privilege escalation) but do not ...

CVE-1999-1090

The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files...

CVE-1999-1336

3Com HiPer Access Router Card HiperARC 4.0 through 4.2.29 allows remote attackers to cause a denial of service reboot via a flood of IAC packets to the telnet port...

CVE-1999-1098

The CVE-1999-1098 entry describes a vulnerability in the BSD Telnet client that uses encryption and Kerberos 4 authentication, enabling remote attackers to decrypt the session by sniffing traffic. Reported impact is partial confidentiality loss with a CVSS v2 base score of 5.0 (Network vector, Lo...

CVE-1999-1090

CVE-1999-1090 affects the NCSA Telnet package for Macintosh and PC. The default configuration enables FTP even though there is no ftp=yes flag, allowing remote attackers to read and modify arbitrary files. The available connected documents confirm the existence and impact of this configuration is...

CVE-2000-1195

telnet daemon telnetd from the Linux netkit package before netkit-telnet-0.16 allows remote attackers to bypass authentication when telnetd is running with the -L command line option...

CVE-2001-0444

CVE-2001-0444 affects Cisco CBOS 2.3.0.053. The vulnerability arises because the router’s output of the show nat (sh nat) command is echoed to the terminal of the next user who connects via Telnet, potentially allowing that user to view sensitive information. The documented impact is partial conf...

CVE-2001-0757

Cisco 6400 Access Concentrator Node Route Processor 2 NRP2 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet...

CVE-2000-0892

CVE-2000-0892 describes a vulnerability where some telnet clients may disclose environment variables to remote telnet servers or via telnet: URLs, due to RFC 1572 (NEW-ENVIRON). The underlying issue is the ability of a server to request environment variables before authentication, potentially exp...