Remote Code Execution via Memory Allocation Failures in FreeBSD Telnetd Service

Remote Code Execution via Memory Allocation Failures in FreeBSD Telnetd Service

CVE-2016-1888 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation failures."

Learn more about our Web Application Penetration Testing UK.