|
Family: Gain root remotely --> Category: destructive_attack
TESO in.telnetd buffer overflow Vulnerability Scan
Vulnerability Scan Summary Attempts to overflow the Telnet server buffer
Detailed Explanation for this Vulnerability Test
The Telnet server does not return an expected number of replies
when it receives a long sequence of 'Are You There' commands.
This probably means it overflows one of its internal buffers and
crashes. It is likely a possible hacker could abuse this bug to gain
control over the remote host's superuser.
For more information, see:
http://www.team-teso.net/advisories/teso-advisory-011.tar.gz
Solution: Comment out the 'telnet' line in /etc/inetd.conf.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|