Oval Definition:	oval:org.mitre.oval:tst:31498
Comment: telnet is earlier than 1:0.17-31.EL4.2 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14191 State: oval:org.mitre.oval:ste:9801 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9640 V Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated. 2013-04-29 oval:org.mitre.oval:def:9708 V Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands. 2013-04-29
BACK