Buffer Overflow in Microsoft Telnet
A buffer overrun vulnerability exists in Microsoft Telnet that lets an attacker execute arbitrary code on the vulnerable system.
February 7, 2002
Reported February 7, 2002, byMicrosoft.
VERSIONS AFFECTED
Windows 2000
Interix 2.2
DESCRIPTION
A buffer overrun vulnerability exists in Microsoft Telnet that lets anattacker execute arbitrary code on the vulnerable system. This vulnerabilitystems from an unchecked buffer in the code that processes the Telnet protocoloptions.
VENDOR RESPONSE
Thevendor, Microsoft, has released securitybulletin MS02-004to address this vulnerability and recommends that affected users apply theappropriate patch provided at Microsoft's Download Center. Users can also findthe Win2K fix for this vulnerability in Windows2000 Security Roll-up Package 1.
CREDIT
Discovered by Microsoft.
Read more about:
MicrosoftAbout the Author
You May Also Like