vulnerability

Red Hat: CVE-2020-10188: no bounds checks in nextitem() function allows to remotely execute arbitrary code (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	2020-03-06	2020-04-07	2023-12-15

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

2020-03-06

Added

2020-04-07

Modified

2023-12-15

Description

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.

Solution(s)

redhat-upgrade-telnetredhat-upgrade-telnet-debuginforedhat-upgrade-telnet-debugsourceredhat-upgrade-telnet-serverredhat-upgrade-telnet-server-debuginfo

References

NVD-CVE-2020-10188
REDHAT-RHSA-2020:1318
REDHAT-RHSA-2020:1334

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today