VYPR

Telnet

by Ncsa

CVEs (5)

  • CVE-2005-0468May 2, 2005
    risk 0.05cvss epss 0.27

    Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated.

  • CVE-1999-0749Aug 16, 1999
    risk 0.04cvss epss 0.08

    Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument.

  • CVE-2020-10188Mar 6, 2020
    risk 0.01cvss epss 0.75

    utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.

  • CVE-2005-0469May 2, 2005
    risk 0.01cvss epss 0.09

    Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

  • CVE-1999-1090Sep 10, 1991
    risk 0.00cvss epss 0.02

    The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows remote attackers to read and modify arbitrary files.