FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-0469

This CVE name corresponds to:

Entered Topic
2006-03-20 heimdal -- Multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2005-0469 at cve.mitre.org

Details

Type Candidate
Name CVE-2005-0469
Phase Assigned(20050218)

Description

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

References

Source Reference
IDEFENSE 20050328 Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability
CONFIRM http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-001-telnet.txt
DEBIAN DSA-697
DEBIAN DSA-699
DEBIAN DSA-703
DEBIAN DSA-731
FREEBSD FreeBSD-SA-05:01.telnet
GENTOO GLSA-200503-36
MANDRAKE MDKSA-2005:061
REDHAT RHSA-2005:327
REDHAT RHSA-2005:330
SGI 20050405-01-P
SUNALERT 57755
SUNALERT 57761
SUNALERT 101671
SUNALERT 101665
UBUNTU USN-224-1
CERT-VN VU#291924
BID 12918
OVAL oval:org.mitre.oval:def:9708
SECUNIA 14745
SECUNIA 17899

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.