csaf_redhat - RHSA-2011:1854

RHSA-2011:1854

Vulnerability from csaf_redhat

Published

2011-12-28 19:05

Modified

2024-11-22 04:56

Summary

Red Hat Security Advisory: krb5-appl security update

Notes

Topic

Updated krb5-appl packages that fix one security issue are now available for Red Hat Enterprise Linux 6.0 and 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

The krb5-appl packages provide Kerberos-aware telnet, ftp, rcp, rsh, and rlogin clients and servers. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC). A buffer overflow flaw was found in the MIT krb5 telnet daemon (telnetd). A remote attacker who can access the telnet port of a target machine could use this flaw to execute arbitrary code as root. (CVE-2011-4862) Note that the krb5 telnet daemon is not enabled by default in any version of Red Hat Enterprise Linux. In addition, the default firewall rules block remote access to the telnet port. This flaw does not affect the telnet daemon distributed in the telnet-server package. For users who have installed the krb5-appl-servers package, have enabled the krb5 telnet daemon, and have it accessible remotely, this update should be applied immediately. All krb5-appl-server users should upgrade to these updated packages, which contain a backported patch to correct this issue.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated krb5-appl packages that fix one security issue are now available\nfor Red Hat Enterprise Linux 6.0 and 6.1 Extended Update Support.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available from the CVE link in\nthe References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The krb5-appl packages provide Kerberos-aware telnet, ftp, rcp, rsh, and\nrlogin clients and servers. Kerberos is a network authentication system\nwhich allows clients and servers to authenticate to each other using\nsymmetric encryption and a trusted third-party, the Key Distribution Center\n(KDC).\n\nA buffer overflow flaw was found in the MIT krb5 telnet daemon (telnetd).\nA remote attacker who can access the telnet port of a target machine could\nuse this flaw to execute arbitrary code as root. (CVE-2011-4862) \n\nNote that the krb5 telnet daemon is not enabled by default in any version\nof Red Hat Enterprise Linux. In addition, the default firewall rules block\nremote access to the telnet port. This flaw does not affect the telnet\ndaemon distributed in the telnet-server package.\n\nFor users who have installed the krb5-appl-servers package, have enabled\nthe krb5 telnet daemon, and have it accessible remotely, this update should\nbe applied immediately. \n\nAll krb5-appl-server users should upgrade to these updated packages, which\ncontain a backported patch to correct this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2011:1854",
        "url": "https://access.redhat.com/errata/RHSA-2011:1854"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-008.txt",
        "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-008.txt"
      },
      {
        "category": "external",
        "summary": "770325",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=770325"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1854.json"
      }
    ],
    "title": "Red Hat Security Advisory: krb5-appl security update",
    "tracking": {
      "current_release_date": "2024-11-22T04:56:21+00:00",
      "generator": {
        "date": "2024-11-22T04:56:21+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2011:1854",
      "initial_release_date": "2011-12-28T19:05:00+00:00",
      "revision_history": [
        {
          "date": "2011-12-28T19:05:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2011-12-28T19:10:32+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T04:56:21+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server EUS (v. 6.0)",
                  "product_id": "6Server-6.0.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_eus:6.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server EUS (v. 6.1)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server EUS (v. 6.1)",
                  "product_id": "6Server-6.1.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_eus:6.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-appl-0:1.0.1-1.el6_0.1.src",
                "product": {
                  "name": "krb5-appl-0:1.0.1-1.el6_0.1.src",
                  "product_id": "krb5-appl-0:1.0.1-1.el6_0.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl@1.0.1-1.el6_0.1?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-0:1.0.1-2.el6_1.3.src",
                "product": {
                  "name": "krb5-appl-0:1.0.1-2.el6_1.3.src",
                  "product_id": "krb5-appl-0:1.0.1-2.el6_1.3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl@1.0.1-2.el6_1.3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
                  "product_id": "krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-1.el6_0.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
                  "product_id": "krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-1.el6_0.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-1.el6_0.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
                  "product_id": "krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-2.el6_1.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-2.el6_1.3?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
                  "product_id": "krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-2.el6_1.3?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
                  "product_id": "krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-1.el6_0.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
                  "product_id": "krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-1.el6_0.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-1.el6_0.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
                  "product_id": "krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-2.el6_1.3?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-2.el6_1.3?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
                  "product_id": "krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-2.el6_1.3?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
                  "product_id": "krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-1.el6_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
                  "product_id": "krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-1.el6_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-1.el6_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
                  "product_id": "krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-2.el6_1.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-2.el6_1.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
                  "product_id": "krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-2.el6_1.3?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
                  "product_id": "krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-1.el6_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
                  "product_id": "krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-1.el6_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-1.el6_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
                "product": {
                  "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
                  "product_id": "krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-clients@1.0.1-2.el6_1.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
                "product": {
                  "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
                  "product_id": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-debuginfo@1.0.1-2.el6_1.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64",
                "product": {
                  "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64",
                  "product_id": "krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-appl-servers@1.0.1-2.el6_1.3?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-0:1.0.1-1.el6_0.1.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-0:1.0.1-1.el6_0.1.src"
        },
        "product_reference": "krb5-appl-0:1.0.1-1.el6_0.1.src",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.i686"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.i686"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.0)",
          "product_id": "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
        "relates_to_product_reference": "6Server-6.0.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-0:1.0.1-2.el6_1.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-0:1.0.1-2.el6_1.3.src"
        },
        "product_reference": "krb5-appl-0:1.0.1-2.el6_1.3.src",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.i686"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64"
        },
        "product_reference": "krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64"
        },
        "product_reference": "krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.i686"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
        "relates_to_product_reference": "6Server-6.1.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.1)",
          "product_id": "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64"
        },
        "product_reference": "krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64",
        "relates_to_product_reference": "6Server-6.1.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2011-4862",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2011-12-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "770325"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "krb5: telnet client and server encrypt_keyid heap-based buffer overflow",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "A buffer overflow flaw was found in the MIT krb5 telnet daemon (telnetd) as shipped with all supported versions of Red Hat Enterprise Linux. A remote attacker who can access the telnet port of a target machine could use this flaw to execute arbitrary code as root.\n\nWhile we are aware of public exploits for this issue that include targets for Red Hat Enterprise Linux 3, we are not aware of any yet which would be successful in gaining arbitrary root code execution in Red Hat Enterprise Linux 4, 5, or 6.  However it is plausible that one could be created to do so.\n\nNote that the krb5 telnet daemon is not enabled by default in any version of Red Hat Enterprise Linux. In addition, the default firewall rules block remote access to the telnet port. This flaw does not affect the telnet daemon distributed in the telnet-server package.\n\nFor users who have enabled the krb5 telnet daemon and have it accessible remotely, they should disable it or apply the updates we have released.\n\nSince same encryption code is shared between the MIT krb5 telnet daemon and the telnet client, this issue affects the telnet client as well. The updates we have released fixes the issue for both, the telnet daemon and the telnet client.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-6.0.z:krb5-appl-0:1.0.1-1.el6_0.1.src",
          "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
          "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
          "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
          "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
          "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
          "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
          "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
          "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
          "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
          "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
          "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
          "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
          "6Server-6.1.EUS:krb5-appl-0:1.0.1-2.el6_1.3.src",
          "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
          "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
          "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
          "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
          "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
          "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
          "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
          "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
          "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
          "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
          "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
          "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4862"
        },
        {
          "category": "external",
          "summary": "RHBZ#770325",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=770325"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4862",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4862"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4862",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4862"
        }
      ],
      "release_date": "2011-12-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2011-12-28T19:05:00+00:00",
          "details": "The krb5 telnet daemon is an xinetd service. You can determine if krb5\ntelnetd is enabled with the commands:\n\n/sbin/chkconfig --list krb5-telnet\n/sbin/chkconfig --list ekrb5-telnet\n\nThe output of these command will display \"on\" if krb5 telnet is enabled.\nkrb5 telnet daemon can be immediately disabled with the commands:\n\n/sbin/chkconfig krb5-telnet off\n/sbin/chkconfig ekrb5-telnet off\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
          "product_ids": [
            "6Server-6.0.z:krb5-appl-0:1.0.1-1.el6_0.1.src",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.1.EUS:krb5-appl-0:1.0.1-2.el6_1.3.src",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2011:1854"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 8.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "6Server-6.0.z:krb5-appl-0:1.0.1-1.el6_0.1.src",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-clients-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-debuginfo-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.i686",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.ppc64",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.s390x",
            "6Server-6.0.z:krb5-appl-servers-0:1.0.1-1.el6_0.1.x86_64",
            "6Server-6.1.EUS:krb5-appl-0:1.0.1-2.el6_1.3.src",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-clients-0:1.0.1-2.el6_1.3.x86_64",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-debuginfo-0:1.0.1-2.el6_1.3.x86_64",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.i686",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.ppc64",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.s390x",
            "6Server-6.1.EUS:krb5-appl-servers-0:1.0.1-2.el6_1.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "krb5: telnet client and server encrypt_keyid heap-based buffer overflow"
    }
  ]
}

cve-2011-4862

Vulnerability from cvelistv5

Published

2011-12-25 01:00

Modified

2024-08-07 00:16

Severity ?

Summary

Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.

References

▼	URL	Tags
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/47399	third-party-advisory, x_refsource_SECUNIA
	http://www.debian.org/security/2011/dsa-2375	vendor-advisory, x_refsource_DEBIAN
	http://www.redhat.com/support/errata/RHSA-2011-1854.html	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html	vendor-advisory, x_refsource_SUSE
	http://archives.neohapsis.com/archives/bugtraq/2011-12/0172.html	mailing-list, x_refsource_BUGTRAQ
	http://www.debian.org/security/2011/dsa-2372	vendor-advisory, x_refsource_DEBIAN
	http://secunia.com/advisories/47359	third-party-advisory, x_refsource_SECUNIA
	http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071640.html	vendor-advisory, x_refsource_FEDORA
	http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006120.html	mailing-list, x_refsource_MLIST
	http://secunia.com/advisories/47374	third-party-advisory, x_refsource_SECUNIA
	http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006118.html	mailing-list, x_refsource_MLIST
	http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc	vendor-advisory, x_refsource_FREEBSD
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html	vendor-advisory, x_refsource_SUSE
	http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071627.html	vendor-advisory, x_refsource_FEDORA
	http://www.mandriva.com/security/advisories?name=MDVSA-2011:195	vendor-advisory, x_refsource_MANDRIVA
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00007.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html	vendor-advisory, x_refsource_SUSE
	http://osvdb.org/78020	vdb-entry, x_refsource_OSVDB
	http://www.securitytracker.com/id?1026463	vdb-entry, x_refsource_SECTRACK
	http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006117.html	mailing-list, x_refsource_MLIST
	http://secunia.com/advisories/47341	third-party-advisory, x_refsource_SECUNIA
	http://www.redhat.com/support/errata/RHSA-2011-1852.html	vendor-advisory, x_refsource_REDHAT
	http://www.redhat.com/support/errata/RHSA-2011-1853.html	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html	vendor-advisory, x_refsource_SUSE
	http://security.freebsd.org/patches/SA-11:08/telnetd.patch	x_refsource_CONFIRM
	http://secunia.com/advisories/47357	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/46239	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html	vendor-advisory, x_refsource_SUSE
	http://secunia.com/advisories/47397	third-party-advisory, x_refsource_SECUNIA
	http://secunia.com/advisories/47373	third-party-advisory, x_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00015.html	vendor-advisory, x_refsource_SUSE
	http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006119.html	mailing-list, x_refsource_MLIST
	http://secunia.com/advisories/47441	third-party-advisory, x_refsource_SECUNIA
	http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=665f1e73cdd9b38e2d2e11b8db9958a315935592	x_refsource_CONFIRM
	http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2011-1851.html	vendor-advisory, x_refsource_REDHAT
	http://www.exploit-db.com/exploits/18280/	exploit, x_refsource_EXPLOIT-DB
	http://secunia.com/advisories/47348	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id?1026460	vdb-entry, x_refsource_SECTRACK
	http://www.debian.org/security/2011/dsa-2373	vendor-advisory, x_refsource_DEBIAN
	https://exchange.xforce.ibmcloud.com/vulnerabilities/71970	vdb-entry, x_refsource_XF

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T00:16:35.035Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SU-2012:0042",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html"
          },
          {
            "name": "47399",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47399"
          },
          {
            "name": "DSA-2375",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2375"
          },
          {
            "name": "RHSA-2011:1854",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1854.html"
          },
          {
            "name": "SUSE-SU-2012:0018",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html"
          },
          {
            "name": "20111226 MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2011-12/0172.html"
          },
          {
            "name": "DSA-2372",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2372"
          },
          {
            "name": "47359",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47359"
          },
          {
            "name": "FEDORA-2011-17493",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071640.html"
          },
          {
            "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006120.html"
          },
          {
            "name": "47374",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47374"
          },
          {
            "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006118.html"
          },
          {
            "name": "FreeBSD-SA-11:08",
            "tags": [
              "vendor-advisory",
              "x_refsource_FREEBSD",
              "x_transferred"
            ],
            "url": "http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc"
          },
          {
            "name": "openSUSE-SU-2012:0019",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html"
          },
          {
            "name": "FEDORA-2011-17492",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071627.html"
          },
          {
            "name": "MDVSA-2011:195",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:195"
          },
          {
            "name": "SUSE-SU-2012:0024",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00007.html"
          },
          {
            "name": "SUSE-SU-2012:0050",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html"
          },
          {
            "name": "78020",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/78020"
          },
          {
            "name": "1026463",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1026463"
          },
          {
            "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006117.html"
          },
          {
            "name": "47341",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47341"
          },
          {
            "name": "RHSA-2011:1852",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1852.html"
          },
          {
            "name": "RHSA-2011:1853",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1853.html"
          },
          {
            "name": "openSUSE-SU-2012:0051",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://security.freebsd.org/patches/SA-11:08/telnetd.patch"
          },
          {
            "name": "47357",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47357"
          },
          {
            "name": "46239",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46239"
          },
          {
            "name": "SUSE-SU-2012:0010",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html"
          },
          {
            "name": "47397",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47397"
          },
          {
            "name": "47373",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47373"
          },
          {
            "name": "SUSE-SU-2012:0056",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00015.html"
          },
          {
            "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006119.html"
          },
          {
            "name": "47441",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47441"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=665f1e73cdd9b38e2d2e11b8db9958a315935592"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt"
          },
          {
            "name": "RHSA-2011:1851",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1851.html"
          },
          {
            "name": "18280",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/18280/"
          },
          {
            "name": "47348",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47348"
          },
          {
            "name": "1026460",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1026460"
          },
          {
            "name": "DSA-2373",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2373"
          },
          {
            "name": "multiple-telnetd-bo(71970)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71970"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-12-23T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01",
        "orgId": "63664ac6-956c-4cba-a5d0-f46076e16109",
        "shortName": "freebsd"
      },
      "references": [
        {
          "name": "SUSE-SU-2012:0042",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html"
        },
        {
          "name": "47399",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47399"
        },
        {
          "name": "DSA-2375",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2375"
        },
        {
          "name": "RHSA-2011:1854",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1854.html"
        },
        {
          "name": "SUSE-SU-2012:0018",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html"
        },
        {
          "name": "20111226 MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2011-12/0172.html"
        },
        {
          "name": "DSA-2372",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2372"
        },
        {
          "name": "47359",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47359"
        },
        {
          "name": "FEDORA-2011-17493",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071640.html"
        },
        {
          "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006120.html"
        },
        {
          "name": "47374",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47374"
        },
        {
          "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006118.html"
        },
        {
          "name": "FreeBSD-SA-11:08",
          "tags": [
            "vendor-advisory",
            "x_refsource_FREEBSD"
          ],
          "url": "http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc"
        },
        {
          "name": "openSUSE-SU-2012:0019",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html"
        },
        {
          "name": "FEDORA-2011-17492",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071627.html"
        },
        {
          "name": "MDVSA-2011:195",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:195"
        },
        {
          "name": "SUSE-SU-2012:0024",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00007.html"
        },
        {
          "name": "SUSE-SU-2012:0050",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html"
        },
        {
          "name": "78020",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/78020"
        },
        {
          "name": "1026463",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1026463"
        },
        {
          "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006117.html"
        },
        {
          "name": "47341",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47341"
        },
        {
          "name": "RHSA-2011:1852",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1852.html"
        },
        {
          "name": "RHSA-2011:1853",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1853.html"
        },
        {
          "name": "openSUSE-SU-2012:0051",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://security.freebsd.org/patches/SA-11:08/telnetd.patch"
        },
        {
          "name": "47357",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47357"
        },
        {
          "name": "46239",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46239"
        },
        {
          "name": "SUSE-SU-2012:0010",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html"
        },
        {
          "name": "47397",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47397"
        },
        {
          "name": "47373",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47373"
        },
        {
          "name": "SUSE-SU-2012:0056",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00015.html"
        },
        {
          "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006119.html"
        },
        {
          "name": "47441",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47441"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=665f1e73cdd9b38e2d2e11b8db9958a315935592"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt"
        },
        {
          "name": "RHSA-2011:1851",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1851.html"
        },
        {
          "name": "18280",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/18280/"
        },
        {
          "name": "47348",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47348"
        },
        {
          "name": "1026460",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1026460"
        },
        {
          "name": "DSA-2373",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2373"
        },
        {
          "name": "multiple-telnetd-bo(71970)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71970"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secteam@freebsd.org",
          "ID": "CVE-2011-4862",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SU-2012:0042",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html"
            },
            {
              "name": "47399",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47399"
            },
            {
              "name": "DSA-2375",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2011/dsa-2375"
            },
            {
              "name": "RHSA-2011:1854",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1854.html"
            },
            {
              "name": "SUSE-SU-2012:0018",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html"
            },
            {
              "name": "20111226 MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2011-12/0172.html"
            },
            {
              "name": "DSA-2372",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2011/dsa-2372"
            },
            {
              "name": "47359",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47359"
            },
            {
              "name": "FEDORA-2011-17493",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071640.html"
            },
            {
              "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
              "refsource": "MLIST",
              "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006120.html"
            },
            {
              "name": "47374",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47374"
            },
            {
              "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
              "refsource": "MLIST",
              "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006118.html"
            },
            {
              "name": "FreeBSD-SA-11:08",
              "refsource": "FREEBSD",
              "url": "http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc"
            },
            {
              "name": "openSUSE-SU-2012:0019",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html"
            },
            {
              "name": "FEDORA-2011-17492",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071627.html"
            },
            {
              "name": "MDVSA-2011:195",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:195"
            },
            {
              "name": "SUSE-SU-2012:0024",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00007.html"
            },
            {
              "name": "SUSE-SU-2012:0050",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html"
            },
            {
              "name": "78020",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/78020"
            },
            {
              "name": "1026463",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1026463"
            },
            {
              "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
              "refsource": "MLIST",
              "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006117.html"
            },
            {
              "name": "47341",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47341"
            },
            {
              "name": "RHSA-2011:1852",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1852.html"
            },
            {
              "name": "RHSA-2011:1853",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1853.html"
            },
            {
              "name": "openSUSE-SU-2012:0051",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html"
            },
            {
              "name": "http://security.freebsd.org/patches/SA-11:08/telnetd.patch",
              "refsource": "CONFIRM",
              "url": "http://security.freebsd.org/patches/SA-11:08/telnetd.patch"
            },
            {
              "name": "47357",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47357"
            },
            {
              "name": "46239",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46239"
            },
            {
              "name": "SUSE-SU-2012:0010",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html"
            },
            {
              "name": "47397",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47397"
            },
            {
              "name": "47373",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47373"
            },
            {
              "name": "SUSE-SU-2012:0056",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00015.html"
            },
            {
              "name": "[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team",
              "refsource": "MLIST",
              "url": "http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006119.html"
            },
            {
              "name": "47441",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47441"
            },
            {
              "name": "http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=665f1e73cdd9b38e2d2e11b8db9958a315935592",
              "refsource": "CONFIRM",
              "url": "http://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=665f1e73cdd9b38e2d2e11b8db9958a315935592"
            },
            {
              "name": "http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt",
              "refsource": "CONFIRM",
              "url": "http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-008.txt"
            },
            {
              "name": "RHSA-2011:1851",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1851.html"
            },
            {
              "name": "18280",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/18280/"
            },
            {
              "name": "47348",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47348"
            },
            {
              "name": "1026460",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1026460"
            },
            {
              "name": "DSA-2373",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2011/dsa-2373"
            },
            {
              "name": "multiple-telnetd-bo(71970)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71970"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "63664ac6-956c-4cba-a5d0-f46076e16109",
    "assignerShortName": "freebsd",
    "cveId": "CVE-2011-4862",
    "datePublished": "2011-12-25T01:00:00",
    "dateReserved": "2011-12-19T00:00:00",
    "dateUpdated": "2024-08-07T00:16:35.035Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted