7.5

CVE-2005-0469

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NcsaTelnet
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.64% 0.944
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:01.telnet.asc
Vendor Advisory
ftp://patches.sgi.com/support/free/security/advisories/20050405-01-P
Patch
http://secunia.com/advisories/14745
http://secunia.com/advisories/17899
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101665-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101671-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57755-1
Patch
Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57761-1
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-001-telnet.txt
Patch
Vendor Advisory
http://www.debian.de/security/2005/dsa-731
http://www.debian.org/security/2005/dsa-703
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:061
http://www.redhat.com/support/errata/RHSA-2005-327.html
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-330.html
Patch
Vendor Advisory
http://www.ubuntulinux.org/usn/usn-224-1
http://www.debian.org/security/2005/dsa-697
Patch
Vendor Advisory
http://www.debian.org/security/2005/dsa-699
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200503-36.xml
Patch
Vendor Advisory
http://www.idefense.com/application/poi/display?id=220&type=vulnerabilities
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/291924
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12918
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9708