50476 – Telnet has major security flaw

Bug 50476 - Telnet has major security flaw

Summary: Telnet has major security flaw

Keywords:
Status:	CLOSED DUPLICATE of bug 50335
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	telnet
Sub Component:
Version:	7.0
Hardware:	i386
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Harald Hoyer
QA Contact:	David Lawrence
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2001-07-31 15:50 UTC by Need Real Name
Modified:	2007-04-18 16:35 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2001-07-31 15:50:20 UTC
Embargoed:

Attachments	(Terms of Use)

Description Need Real Name 2001-07-31 15:50:16 UTC

From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.4.3-12 i686)

Description of problem:
A big security hole was recently discovered in telnetd.  I can't tell if my
telnet is vulnerable.  The RPM I used was telnet-server-0.17-10.  I don't
know if it's vulnerable because RedHat didn't release an advisory.  the
0.17 matches non-vulnerable netkit versions in number, but I can't find any
information as to whether or not this telnetd is netikit.  Thanks.

How reproducible:
Always

Steps to Reproduce:
1.I don't know if there is a problem, but if you find the source code on
BugTraq for the vulnerability checker, you get a hit.
2. Be unsure--this checker is known to produce wrong results on some
systems
3.Lather, rinse, repeat...
	

Additional info:

Comment 1 Harald Hoyer 2001-07-31 15:53:36 UTC


*** This bug has been marked as a duplicate of 50335 ***

Note You need to log in before you can comment on or make changes to this bug.