Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0640

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0640
Last Modified 10 Sep 2008 03:27:05
Published 06 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0640

Summary

Format string vulnerability in the SSL_set_verify function in telnetd.c for SSLtelnet daemon (SSLtelnetd) 0.13 allows remote attackers to execute arbitrary code.

Vulnerable Systems

Application

  • Linux Netkit 0.17

  • Linux Netkit 0.17.17

  • Ssltelnetd Secure Telnet 0.13.1


References

DEBIAN - DSA-529

XF - ssltelnetd-format-string(16653)

MISC - http://www.idefense.com/application/poi/display?id=114&type=vulnerabilities


Last Updated: 27 May 2016 10:38:42