Back to search
CVE-2011-4862
Published: Dec 25, 2011
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SU-2012:0042
vendor-advisory
x_refsource_SUSE
47399
third-party-advisory
x_refsource_SECUNIA
DSA-2375
vendor-advisory
x_refsource_DEBIAN
RHSA-2011:1854
vendor-advisory
x_refsource_REDHAT
SUSE-SU-2012:0018
vendor-advisory
x_refsource_SUSE
20111226 MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]
mailing-list
x_refsource_BUGTRAQ
DSA-2372
vendor-advisory
x_refsource_DEBIAN
47359
third-party-advisory
x_refsource_SECUNIA
FEDORA-2011-17493
vendor-advisory
x_refsource_FEDORA
[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team
mailing-list
x_refsource_MLIST
47374
third-party-advisory
x_refsource_SECUNIA
[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team
mailing-list
x_refsource_MLIST
FreeBSD-SA-11:08
vendor-advisory
x_refsource_FREEBSD
openSUSE-SU-2012:0019
vendor-advisory
x_refsource_SUSE
FEDORA-2011-17492
vendor-advisory
x_refsource_FEDORA
MDVSA-2011:195
vendor-advisory
x_refsource_MANDRIVA
SUSE-SU-2012:0024
vendor-advisory
x_refsource_SUSE
SUSE-SU-2012:0050
vendor-advisory
x_refsource_SUSE
78020
vdb-entry
x_refsource_OSVDB
1026463
vdb-entry
x_refsource_SECTRACK
[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team
mailing-list
x_refsource_MLIST
47341
third-party-advisory
x_refsource_SECUNIA
RHSA-2011:1852
vendor-advisory
x_refsource_REDHAT
RHSA-2011:1853
vendor-advisory
x_refsource_REDHAT
openSUSE-SU-2012:0051
vendor-advisory
x_refsource_SUSE
http://security.freebsd.org/patches/SA-11:08/telnetd.patch
x_refsource_CONFIRM
47357
third-party-advisory
x_refsource_SECUNIA
46239
third-party-advisory
x_refsource_SECUNIA
SUSE-SU-2012:0010
vendor-advisory
x_refsource_SUSE
47397
third-party-advisory
x_refsource_SECUNIA
47373
third-party-advisory
x_refsource_SECUNIA
SUSE-SU-2012:0056
vendor-advisory
x_refsource_SUSE
[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team
mailing-list
x_refsource_MLIST
47441
third-party-advisory
x_refsource_SECUNIA
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt
x_refsource_CONFIRM
RHSA-2011:1851
vendor-advisory
x_refsource_REDHAT
18280
exploit
x_refsource_EXPLOIT-DB
47348
third-party-advisory
x_refsource_SECUNIA
1026460
vdb-entry
x_refsource_SECTRACK
DSA-2373
vendor-advisory
x_refsource_DEBIAN
multiple-telnetd-bo(71970)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now