CVE-2005-0468
CVE-2005-0468
Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/25303unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:01.telnet.ascftp://patches.sgi.com/support/free/security/advisories/20050405-01-Phttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000962http://secunia.com/advisories/14745http://secunia.com/advisories/17899https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9640http://sunsolve.sun.com/search/document.do?assetkey=1-26-101665-1http://sunsolve.sun.com/search/document.do?assetkey=1-26-101671-1http://sunsolve.sun.com/search/document.do?assetkey=1-26-57755-1http://sunsolve.sun.com/search/document.do?assetkey=1-26-57761-1http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-001-telnet.txthttp://www.debian.de/security/2005/dsa-731