CVEs-PoC/2007/CVE-2007-0882.md at 52f3262c8d52545fc4e20c2a38454fc446c51385

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 19:17:37 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the bin account.

POC

Reference

http://isc.sans.org/diary.html?storyid=2220
http://isc.sans.org/diary.html?storyid=2220
http://www.securityfocus.com/bid/22512
http://www.securityfocus.com/bid/22512

Github

No PoCs found on GitHub currently.

907 B Raw Blame History

CVE-2007-0882

Description

POC

Reference

Github

907 B

Raw Blame History