CVE-2001-0349

Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the first of two variants of...

multiple vendor telnet daemon vulnerability

This is a short version of the original advisory. Most details about exploiting this vulnerabilty have been removed after thinking about it. I do not release it because it makes me happy, and I would like you to please not assume things about the reasons involving this posting. I wish things woul...

Solaris 2.x7.08 IRIX 6.5.x OpenBSD 2.x NetBSD 1.x Debian 3 HP-UX 10 - TelnetD Remote Buffer Overflow

Solaris 2.x7.08 IRIX 6.5.x OpenBSD 2.x NetBSD 1.x Debian 3 HP-UX 10 - TelnetD Remote Buffer Overflow // source: https://www.securityfocus.com/bid/3064/info A boundary condition error exists in telnet daemons derived from the BSD telnet daemon. Under certain circumstances, the buffer overflow can...

Solaris 2.x/7.0/8 / IRIX 6.5.x / OpenBSD 2.x / NetBSD 1.x / Debian 3 / HP-UX 10 - 'TelnetD' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/3064/info A boundary condition error exists in telnet daemons derived from the BSD telnet daemon. Under certain circumstances, the buffer overflow can occur when a combination of telnet protocol options are received by the daemon. The function...

3Com TelnetD

I noticed that there are infinity retries and no delay enabled at 3Com hardware, so I wrote this little Telnetcracker for this problem. I send it to 3Com, but I think they weren't bothered much about that. They sended me a notice to provide hardware serial and my name etc. ....strange... = This...

Уязвимость в telnet в 3COM (password bruteforcing)

Не ограничено число попыток ввода пароля...

CVE-2001-1291

The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the server via brute force password guessing...

3Com SuperStack II PS Hub 40 - TelnetD Weak Password Protection

source: https://www.securityfocus.com/bid/3034/info A vulnerability exists in certain models of 3Com hubs and potentially other 3Com network products. The affected devices fail to properly restrict the allowed number of login attempts to the inbuilt telnet-based administration interface from remo...

3Com SuperStack II PS Hub 40 - TelnetD Weak Password Protection

3Com SuperStack II PS Hub 40 - TelnetD Weak Password Protection source: https://www.securityfocus.com/bid/3034/info A vulnerability exists in certain models of 3Com hubs and potentially other 3Com network products. The affected devices fail to properly restrict the allowed number of login attempt...

CVE-2001-0444

Cisco CBOS 2.3.0.053 sends output of the "sh nat" aka "show nat" command to the terminal of the next user who attempts to connect to the router via telnet, which could allow that user to obtain sensitive information...

Cisco Security Advisory: Cisco 6400 NRP2 Telnet Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco 6400 NRP2 Telnet Vulnerability ============================================================================== Revision 1.0 For Public Release 2001 June 14 at 1500 UTC...

Telnet досутп в Cisco 6400 (unauthorized access)

Разрешен телнет-доступ к vty с неустановленным паролем...

Cisco 6400 NRP2 Telnet Vulnerability

...

Security Bulletin MS01-031

--------------------------------------------------------------------- Title: Predictable Name Pipes Could Enable Privilege Elevation via Telnet Date: 07 June 2001 Software: Windows 2000 Impact: Privilege elevation, denial of service, information disclosure Bulletin: MS01-031 Microsoft encourages...

Microsoft Windows 2000 Telnet server vulnerability

RAZOR Advisory: Range checking fault condition in Microsoft Windows 2000 Telnet server Issue Date: June 8, 2001 Contact: Michal Zalewski [email protected] Topic: Range checking fault condition is present in telnet server shipped with Microsoft Windows 2000. Affected Systems: Tested on...

Проблемы с telnet-сервисом Windows 2000 (predictable named pipes)

telnet service подключается к существующей named pipe без проверки каким приложением она открыта...

Microsoft Windows Server 2000 - Telnet 'Username' Denial of Service

source: https://www.securityfocus.com/bid/2838/info Due to a flaw in the implementation of the telnet service, it is possible for a remote client to perform a denial of service attack against a host. If approximately 4300 characters already exist in the input buffer and additional numerous...

Microsoft Windows Server 2000 - Telnet Username Denial of Service

Microsoft Windows Server 2000 - Telnet Username Denial of Service source: https://www.securityfocus.com/bid/2838/info Due to a flaw in the implementation of the telnet service, it is possible for a remote client to perform a denial of service attack against a host. If approximately 4300 character...

CVE-2001-0150

Internet Explorer 5.5 and earlier executes Telnet sessions using command line arguments that are specified by the web site, which could allow remote attackers to execute arbitrary commands if the IE client is using the Telnet client provided in Services for Unix SFU 2.0, which creates session...

Check Point FireWall-1 Telnet Client Authentication Detection

The Check Point FireWall-1 Client Authentication server is used to authenticate a user via telnet. Once authenticated, the user can get more privileges on the network ie, get access to hosts that were previously blocked by the firewall. C Tenable Network Security, Inc. include"compat.inc";...