CVE-2001-0554

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2001-0554
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.asc Broken Link Patch Vendor Advisory
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-012.txt.asc Broken Link
ftp://patches.sgi.com/support/free/security/advisories/20010801-01-P Broken Link
ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.10/CSSA-2001-SCO.10.txt Broken Link
http://archives.neohapsis.com/archives/hp/2001-q4/0014.html Broken Link
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000413 Broken Link
http://ftp.support.compaq.com/patches/.new/html/SSRT0745U.shtml Broken Link
http://online.securityfocus.com/advisories/3476 Broken Link Third Party Advisory VDB Entry
http://online.securityfocus.com/archive/1/199496 Broken Link Third Party Advisory VDB Entry
http://online.securityfocus.com/archive/1/199541 Broken Link Third Party Advisory VDB Entry
http://online.securityfocus.com/archive/1/203000 Broken Link Third Party Advisory VDB Entry
http://www.calderasystems.com/support/security/advisories/CSSA-2001-030.0.txt Broken Link
http://www.cert.org/advisories/CA-2001-21.html Patch Third Party Advisory US Government Resource
http://www.ciac.org/ciac/bulletins/l-131.shtml Broken Link
http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtml Third Party Advisory
http://www.debian.org/security/2001/dsa-070 Third Party Advisory
http://www.debian.org/security/2001/dsa-075 Third Party Advisory
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-068.php3 Broken Link
http://www.novell.com/linux/security/advisories/2001_029_nkitb_txt.html Broken Link
http://www.osvdb.org/809 Broken Link
http://www.redhat.com/support/errata/RHSA-2001-099.html Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2001-100.html Third Party Advisory
http://www.securityfocus.com/archive/1/197804 Exploit Third Party Advisory VDB Entry Vendor Advisory
http://www.securityfocus.com/bid/3064 Exploit Patch Third Party Advisory VDB Entry Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6875 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mit:kerberos:1.0:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.1:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.2:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:netkit:linux_netkit:0.10:*:*:*:*:*:*:*
cpe:2.3:a:netkit:linux_netkit:0.11:*:*:*:*:*:*:*
cpe:2.3:a:netkit:linux_netkit:0.12:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:6.5:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:freebsd:freebsd:2.0:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.0.5:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1:stable:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.0:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.6:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.6.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.7:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.1.7.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2:current:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.2:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.3:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.4:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.5:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.6:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.7:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:2.2.8:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.0:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.0:releng:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.2:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.3:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.4:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.5:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.5:stable:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.5.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.5.1:release:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:3.5.1:stable:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.0:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.0:alpha:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.0:releng:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.1.1:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:4.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:4.3.3:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:5.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.0:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.2:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.2.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.3:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.3.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.3.2:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.3.3:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.4:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.4.1:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.4.2:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.4.3:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*
cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.0:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.1:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.2:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.3:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.4:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.5:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.6:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.7:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:2.8:*:*:*:*:*:*:*
cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.0:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.1:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.2:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.3:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.4:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*
History

No history.

Information

Published : 2001-08-14 04:00

Updated : 2024-02-28 10:24

NVD link : CVE-2001-0554

Mitre link : CVE-2001-0554

CVE.ORG link : CVE-2001-0554

JSON object : View

Products Affected

netbsd

  • netbsd

openbsd

  • openbsd

sgi

  • irix

netkit

  • linux_netkit

ibm

  • aix

mit

  • kerberos
  • kerberos_5

freebsd

  • freebsd

sun

  • sunos
  • solaris

debian

  • debian_linux
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024