vulnerability

Amazon Linux AMI 2: CVE-2020-10188: Security patch for telnet (ALAS-2020-1422)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	2020-03-06	2020-05-08	2022-09-30

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

2020-03-06

Added

2020-05-08

Modified

2022-09-30

Description

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.

Solution(s)

amazon-linux-ami-2-upgrade-telnetamazon-linux-ami-2-upgrade-telnet-debuginfoamazon-linux-ami-2-upgrade-telnet-server

References

AMAZON-AL2/ALAS-2020-1422
CVE-2020-10188
https://attackerkb.com/topics/CVE-2020-10188

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today