Vulnerability Description
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mit | Kerberos | 1.0 |
| Mit | Kerberos 5 | 1.1 |
| Netkit | Linux Netkit | 0.10 |
| Sgi | Irix | 6.5 |
| Freebsd | Freebsd | 2.0 |
| Ibm | Aix | 4.3 |
| Netbsd | Netbsd | 1.0 |
| Openbsd | Openbsd | 2.0 |
| Sun | Solaris | 2.6 |
| Sun | Sunos | 5.0 |
| Debian | Debian Linux | 2.2 |
Related Weaknesses (CWE)
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.ascBroken LinkPatchVendor Advisory
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-012.txt.ascBroken Link
- ftp://patches.sgi.com/support/free/security/advisories/20010801-01-PBroken Link
- ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.10/CSSA-2001-SCO.1Broken Link
- http://archives.neohapsis.com/archives/hp/2001-q4/0014.htmlBroken Link
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000413Broken Link
- http://ftp.support.compaq.com/patches/.new/html/SSRT0745U.shtmlBroken Link
- http://online.securityfocus.com/advisories/3476Broken LinkThird Party AdvisoryVDB Entry
- http://online.securityfocus.com/archive/1/199496Broken LinkThird Party AdvisoryVDB Entry
- http://online.securityfocus.com/archive/1/199541Broken LinkThird Party AdvisoryVDB Entry
- http://online.securityfocus.com/archive/1/203000Broken LinkThird Party AdvisoryVDB Entry
- http://www.calderasystems.com/support/security/advisories/CSSA-2001-030.0.txtBroken Link
- http://www.cert.org/advisories/CA-2001-21.htmlPatchThird Party AdvisoryUS Government Resource
- http://www.ciac.org/ciac/bulletins/l-131.shtmlBroken Link
- http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtmlThird Party Advisory
FAQ
What is CVE-2001-0554?
CVE-2001-0554 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not p...
How severe is CVE-2001-0554?
CVE-2001-0554 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0554?
Check the references section above for vendor advisories and patch information. Affected products include: Mit Kerberos, Mit Kerberos 5, Netkit Linux Netkit, Sgi Irix, Freebsd Freebsd.