CVE-2005-0469: Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute…

high7.5CVSS 3.1

AVNACLAuNCPIPAP

Buffer overflow in the slc_add_reply function in various BSD-based Telnet clients, when handling LINEMODE suboptions, allows remote attackers to execute arbitrary code via a reply with a large number of Set Local Character (SLC) commands.

Affected

30 ranges· showing 25

Vendor	Product	Version range	Fixed in
debian	heimdal	< heimdal 0.6.3-11 (bookworm)	heimdal 0.6.3-11 (bookworm)
debian	heimdal	< heimdal 0.6.3-10 (bookworm)	heimdal 0.6.3-10 (bookworm)
debian	krb5	< heimdal 0.6.3-10 (bookworm)	heimdal 0.6.3-10 (bookworm)
debian	netkit-telnet	< heimdal 0.6.3-10 (bookworm)	heimdal 0.6.3-10 (bookworm)
debian	netkit-telnet-ssl	< heimdal 0.6.3-10 (bookworm)	heimdal 0.6.3-10 (bookworm)
heimdal_project	heimdal	>= 0 < 0.6.3-11	0.6.3-11
heimdal_project	heimdal	>= 0 < 0.6.3-10	0.6.3-10
heimdal_project	heimdal	>= 0 < 0.6.3-11	0.6.3-11
heimdal_project	heimdal	>= 0 < 0.6.3-10	0.6.3-10
heimdal_project	heimdal	>= 0 < 0.6.3-11	0.6.3-11
heimdal_project	heimdal	>= 0 < 0.6.3-10	0.6.3-10
heimdal_project	heimdal	>= 0 < 0.6.3-11	0.6.3-11
heimdal_project	heimdal	>= 0 < 0.6.3-10	0.6.3-10
mit	krb5	>= 0 < 1.3.6-2	1.3.6-2
mit	krb5	>= 0 < 1.3.6-2	1.3.6-2
mit	krb5	>= 0 < 1.3.6-2	1.3.6-2
mit	krb5	>= 0 < 1.3.6-2	1.3.6-2
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—
telnetd	telnetd	—	—

CVSS provenance

nvd7.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P

osv7.5HIGH