6479 matches found
CVE-2001-0345
CVE-2001-0345 affects Microsoft Windows 2000 Telnet Service. A denial-of-service occurs when remote attackers establish many idle Telnet sessions to prevent the service from enforcing idle-timeout values, exhausting available sessions. Root cause: the Telnet Service fails to enforce pre-defined t...
EUVD-2001-0346
Handle leak in Microsoft Windows 2000 telnet service allows attackers to cause a denial of service by starting a large number of sessions and terminating them...
CVE-2001-0347
The connected CERT/KB entry confirms a vulnerability in Microsoft Windows 2000 Telnet Service that permits remote authentication using domain accounts without specifying a domain name, by exploiting a wildcard domain search. The issue can lead to unauthorized domain-login or information leakage. ...
CVE-2001-0348
Microsoft Windows 2000 telnet service allows attackers to cause a denial of service crash via a long logon command that contains a backspace...
CVE-2001-0347
Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote attackers to determine the existence of user accounts such as Guest, or log in to the server without specifying the domain name, via a malformed userid...
CVE-2001-0346
Handle leak in Microsoft Windows 2000 telnet service allows attackers to cause a denial of service by starting a large number of sessions and terminating them...
CVE-2001-0427
Cisco VPN 3000 series concentrators before 2.5.2F allow remote attackers to cause a denial of service via a flood of invalid login requests to 1 the SSL service, or 2 the telnet service, which do not properly disconnect the user after several failed login attempts...
CVE-2001-0351
The CVE-2001-0351 entry concerns Microsoft Windows 2000 Telnet Service. The vulnerability allows an unprivileged local user to invoke a system call that terminates an existing Telnet session, producing a denial-of-service condition. Affected software is Windows 2000 with the Telnet Service; the u...
CVE-2001-0348
CVE-2001-0348 affects Microsoft Windows 2000 Telnet Service. A vulnerability in range checking on incoming Telnet session requests can be exploited by sending a long logon sequence including delete (backspace) characters to crash the Telnet Service, causing a denial of service. Microsoft addresse...
CVE-2001-0345
Microsoft Windows 2000 telnet service allows attackers to prevent idle Telnet sessions from timing out, causing a denial of service by creating a large number of idle sessions...
Microsoft Windows 2000 Telnet Service searches all trusted domains for user accounts
Overview The Microsoft Windows 2000 Telnet Service contains a vulnerability that allows remote attackers to log in using domain accounts without providing a specific domain name. Description The Microsoft Windows 2000 Telnet Service allows users to establish connections using either local account...
Microsoft Windows 2000 Telnet Service contains handle leak
Overview The Microsoft Windows 2000 Telnet Service contains a denial-of-service vulnerability that allows remote attackers to disrupt the telnet service on affected servers. Description The Microsoft Windows 2000 Telnet Service contains a resource starvation vulnerability that prevents the server...
Microsoft Windows 2000 Telnet Service allows unprivileged local users to terminate sessions via unprotected system calls
Overview The Microsoft Windows 2000 Telnet Service contains a denial-of-service vulnerability that allows unprivileged local users to terminate existing telnet sessions. Description The Microsoft Windows 2000 Telnet Service contains a vulnerability that allows unprivileged local users to execute...
Microsoft Windows 2000 Telnet Service uses named pipes with predictable names
Overview The Microsoft Windows 2000 Telnet Service contains a vulnerability that allows unprivileged local users to execute arbitrary code with elevated privileges. Description The Microsoft Windows 2000 Telnet Service creates a named pipe to share information between the processes that handle ea...
Microsoft Windows 2000 Telnet Service fails to enforce timeouts on idle telnet sessions
Overview The Microsoft Windows 2000 Telnet Service contains a denial-of-service vulnerability that allows remote attackers to disrupt the telnet service on affected servers. Description The Microsoft Windows 2000 Telnet Service contains a vulnerability that allows a remote attacker to place idle...
Microsoft Windows 2000 Telnet Service fails to reject oversized username input values
Overview The Microsoft Windows 2000 Telnet Service contains a denial-of-service vulnerability that allows remote attackers to disrupt the telnet service on affected servers. Description The Microsoft Windows 2000 Telnet Service contains a vulnerability in the section of code that performs range...
Beck IPC@Chip TelnetD vulnerable to account lockout via idle telnet connection
Overview There is a vulnerability in the Beck IPC@CHIP that allows an attacker to create a denial-of-service condition. Description The Beck IPC@CHIP is a single chip embedded webserver. This device contains a telnet server that is configured by default to not have a login timeout. Additionally,...
CVE-1999-1202
CVE-1999-1202 affects StarTech products: (1) POP3 proxy server and (2) a telnet server. The vulnerability allows remote attackers to cause a denial of service by sending an excessively long USER command. The connected documents confirm the affected components and the root cause (long USER command...
CVE-1999-1264
WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled...
CVE-1999-1264
The CVE-1999-1264 entry describes a vulnerability in WebRamp M3 routers where remote access (telnet/HTTP) is not disabled as configured, allowing access to the device despite explicit disablement. The NVD entry lists a CVSS 2.0 base score of 7.5 (HIGH) with network impact across confidentiality, ...