CVE-2007-0882
CVE-2007-0882
Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the bin account.
Affected products
n/a · n/apublic PoCs found — 3
exploitdbwww.exploit-db.com/exploits/9918unverifiedexploitdbwww.exploit-db.com/exploits/16328unverifiedexploitdbwww.exploit-db.com/exploits/3293unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://erratasec.blogspot.com/2007/02/trivial-remote-solaris-0day-disable.htmlhttp://isc.sans.org/diary.html?storyid=2220http://osvdb.org/31881http://seclists.org/fulldisclosure/2007/Feb/0217.htmlhttp://secunia.com/advisories/24120https://exchange.xforce.ibmcloud.com/vulnerabilities/32434https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2202http://sunsolve.sun.com/search/document.do?assetkey=1-26-102802-1http://www.kb.cert.org/vuls/id/881872http://www.securityfocus.com/archive/1/459831/100/0/threadedhttp://www.securityfocus.com/archive/1/459843/100/0/threadedhttp://www.securityfocus.com/archive/1/459855/100/0/threaded