Vulnerability: Remote Reading of Sensitive Environment Variables in BSD-based Telnet Clients

Vulnerability: Remote Reading of Sensitive Environment Variables in BSD-based Telnet Clients

CVE-2005-0488 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.