Oval Definition:oval:com.redhat.rhsa:def:20050504
Revision Date:2007-01-26Version:501
Title:RHSA-2005:504: telnet security update (Moderate)
Description:The telnet package provides a command line telnet client.

Gaël Delalleau discovered an information disclosure issue in the way the telnet client handles messages from a server. An attacker could construct a malicious telnet server that collects information from the environment of any victim who connects to it. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0488 to this issue.

Users of telnet should upgrade to this updated package, which contains a backported patch to correct this issue.
Family:unixClass:patch
Status:Reference(s):CVE-2005-0488
RHSA-2005:504-00
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • telnet is earlier than 1:0.17-26.EL3.3
  • AND telnet is signed with Red Hat master key
  • telnet-server is earlier than 1:0.17-26.EL3.3
  • AND telnet-server is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • telnet is earlier than 1:0.17-31.EL4.3
  • AND telnet is signed with Red Hat master key
  • telnet-server is earlier than 1:0.17-31.EL4.3
  • AND telnet-server is signed with Red Hat master key
    • BACK