Lucene search
K

232 matches found

Ubuntu
Ubuntu
added 2022/03/15 1:16 p.m.108 views

USN-5327-1: rsh vulnerability

Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server, a remote attacker could possibly use this issue to modify directory permissions...

5.9CVSS6.4AI score0.02067EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/03/15 12:0 a.m.41 views

Ubuntu 18.04 LTS : rsh vulnerability (USN-5327-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5327-1 advisory. Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server,...

5.9CVSS6.4AI score0.02067EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2020-0211)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.8AI score0.74513EPSS
Exploits2References4
OSV
OSV
added 2021/11/25 1:6 p.m.16 views

MGASA-2021-0525 Updated rsh packages fix security vulnerability

In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...

7.4CVSS6.3AI score0.02067EPSS
Exploits2References3
Mageia
Mageia
added 2021/11/25 1:6 p.m.68 views

Updated rsh packages fix security vulnerability

In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...

7.4CVSS3AI score0.02067EPSS
Exploits2References2
OSV
OSV
added 2021/11/19 12:0 a.m.42 views

DLA-2822-1 netkit-rsh - security update

Bulletin has no description...

7.4CVSS6.4AI score0.02067EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/11/19 12:0 a.m.59 views

Debian DLA-2822-1 : netkit-rsh - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2822 advisory. - In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The...

7.4CVSS7.3AI score0.02067EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2021/11/19 12:0 a.m.27 views

Debian: Security Advisory (DLA-2822-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS6.1AI score0.02067EPSS
Exploits2References4
Debian
Debian
added 2021/11/18 11:7 p.m.51 views

[SECURITY] [DLA 2822-1] netkit-rsh security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2822-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 19, 2021 https://wiki.debian.org/LTS -...

7.4CVSS7.3AI score0.02067EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2020/12/27 12:0 a.m.4 views

Netkit Telnet Buffer Overflow (CVE-2020-10188)

A buffer overflow vulnerability exists in Netkit Telnet Project. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

10CVSS5.3AI score0.74513EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.19 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : telnet Vulnerability (NS-SA-2020-0055)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has telnet packages installed that are affected by a vulnerability: - utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer...

10CVSS8.5AI score0.74513EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.30 views

EulerOS 2.0 SP3 : telnet (EulerOS-SA-2020-2065)

According to the version of the telnet packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a...

10CVSS8.2AI score0.74513EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/09/07 12:0 a.m.19 views

NewStart CGSL MAIN 4.05 : krb5-appl Vulnerability (NS-SA-2020-0049)

The remote NewStart CGSL host, running version MAIN 4.05, has krb5-appl packages installed that are affected by a vulnerability: - utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow...

10CVSS8.5AI score0.74513EPSS
Exploits2References2
BDU FSTEC
BDU FSTEC
added 2020/07/09 12:0 a.m.6 views

The vulnerability of the implementations of the functions netclear() and nextitem() in the demon telnetd of the netkit-telnet server allows a intruder to execute arbitrary code.

The vulnerability of the implementations of the functions netclear and nextitem in the telnetd daemon of the netkit-telnet server is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code by...

10CVSS7.6AI score0.74513EPSS
Exploits2References11Affected Software5
Tenable Nessus
Tenable Nessus
added 2020/06/02 12:0 a.m.166 views

EulerOS 2.0 SP5 : telnet (EulerOS-SA-2020-1617)

According to the version of the telnet packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a...

10CVSS8.2AI score0.74513EPSS
Exploits2References2
Mageia
Mageia
added 2020/05/15 3:48 p.m.40 views

Updated netkit-telnet packages fix security vulnerability

Updated netkit-telnetd packages fix security vulnerability: A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could...

10CVSS1.6AI score0.74513EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/05/07 12:0 a.m.32 views

Amazon Linux 2 : telnet (ALAS-2020-1422)

The version of telnet installed on the remote host is prior to 0.17-65. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1422 advisory. utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data...

10CVSS8.5AI score0.74513EPSS
Exploits2References3
Amazon
Amazon
added 2020/05/06 12:0 a.m.37 views

Important: telnet

Issue Overview: utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions. CVE-2020-10188 Affected Packages: telnet Note: This advisory is...

10CVSS9.1AI score0.74513EPSS
Exploits2
Saint
Saint
added 2020/03/24 12:0 a.m.215 views

netkit telnetd nextitem vulnerability

Added: 03/24/2020 Background netkit telnetd is a server implementation of the Telnet protocol which comes with many Linux and Unix operating systems. Problem An unbounded read and write condition in the nextitem function allows remote attackers to execute arbitrary commands on the server...

0.9AI score
Exploits0
Saint
Saint
added 2020/03/24 12:0 a.m.115 views

netkit telnetd nextitem vulnerability

Added: 03/24/2020 Background netkit telnetd is a server implementation of the Telnet protocol which comes with many Linux and Unix operating systems. Problem An unbounded read and write condition in the nextitem function allows remote attackers to execute arbitrary commands on the server...

8.3AI score
Exploits0
Rows per page
Query Builder