Code: p65 Severity: Critical
Description: FreeBSD's telnetd service program was found to contain buffer overflow vulnerability, because there is a wrong check the scope of the cache to output data for remote customers. An attacker could buffer overflow and collapse, or the identity of managers to telnetd (usually root) to run malicious code. The vulnerability does not need to use a formal system ID and password, only can connect to the telnet server??s port. Impact: All FreeBSD4.4 version of the former version Corrective: Upgrade the telnet server, please download from the Freebsd site and install patches.
|
