Vulnerability Description
telnetd.exe in Pragma TelnetServer 7.0.4.589 allows remote attackers to cause a denial of service (process crash and resource exhaustion) via a crafted TELOPT PRAGMA LOGON telnet option, which triggers a NULL pointer dereference.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Pragma Systems | Pragma Telnetserver | 7.0.4.589 |
Related Weaknesses (CWE)
References
- http://aluigi.altervista.org/adv/pragmatel-adv.txt
- http://marc.info/?l=bugtraq&m=119947184730448&w=2
- http://www.securityfocus.com/bid/27143
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39353
- http://aluigi.altervista.org/adv/pragmatel-adv.txt
- http://marc.info/?l=bugtraq&m=119947184730448&w=2
- http://www.securityfocus.com/bid/27143
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39353
FAQ
What is CVE-2008-0153?
CVE-2008-0153 is a vulnerability with a CVSS score of 5.0 (MEDIUM). telnetd.exe in Pragma TelnetServer 7.0.4.589 allows remote attackers to cause a denial of service (process crash and resource exhaustion) via a crafted TELOPT PRAGMA LOGON telnet option, which trigger...
How severe is CVE-2008-0153?
CVE-2008-0153 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0153?
Check the references section above for vendor advisories and patch information. Affected products include: Pragma Systems Pragma Telnetserver.