utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 3.9 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: CWE-120,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| juniper | junos | 12.3x50 |
| juniper | junos | 19.1 |
| juniper | junos | 15.1 |
| juniper | junos | 16.1 |
| juniper | junos | 15.1x49 |
| fedoraproject | fedora | 30 |
| juniper | junos | 12.3 |
| juniper | junos | 18.4 |
| juniper | junos | 15.1x49-d60 |
| juniper | junos | 12.3r12 |
| juniper | junos | 17.2 |
| juniper | junos | 20.1 |
| netkit_telnet_project | netkit_telnet | * |
| juniper | junos | 15.1x49-d160 |
| juniper | junos | 15.1x49-d150 |
| debian | debian_linux | 9.0 |
| juniper | junos | 18.2x75 |
| juniper | junos | 15.1x49-d140 |
| juniper | junos | 18.2x75-d10 |
| juniper | junos | 18.1 |
| juniper | junos | 17.2x75 |
| juniper | junos | 18.3 |
| juniper | junos | 15.1x49-d30 |
| juniper | junos | 18.2x75-d30 |
| juniper | junos | 19.2 |
| juniper | junos | 12.3x48 |
| juniper | junos | 19.4 |
| juniper | junos | 19.3 |
| juniper | junos | 18.2 |
| arista | eos | 4.24.0f |
| fedoraproject | fedora | 32 |
| debian | debian_linux | 8.0 |
| oracle | communications_performance_intelligence_center | 10.4.0.2 |
| fedoraproject | fedora | 31 |
| arista | eos | * |
| juniper | junos | 17.4 |
| juniper | junos | 17.3 |