Format String Injection Vulnerability in Telnetd Server in IRIX 5.2 through 6.1

Format String Injection Vulnerability in Telnetd Server in IRIX 5.2 through 6.1

CVE-2000-0733 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.

Learn more about our Cis Benchmark Audit For Server Software.