5 - CVE-2005-0488

Executive Summary

Informations
Name	CVE-2005-0488	First vendor Publication	2005-06-14
Vendor	Cve	Last vendor Modification	2020-01-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0488

CWE : Common Weakness Enumeration

%	Id	Name

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11373

Oval ID:	oval:org.mitre.oval:def:11373
Title:	Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
Description:	Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-0488	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section krb5-workstation is earlier than 0:1.2.7-47 AND krb5 is earlier than 0:1.2.7-47 AND krb5-libs is earlier than 0:1.2.7-47 AND telnet is earlier than 1:0.17-26.EL3.3 AND krb5-server is earlier than 0:1.2.7-47 AND telnet-server is earlier than 1:0.17-26.EL3.3 AND krb5-devel is earlier than 0:1.2.7-47 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section telnet is earlier than 1:0.17-31.EL4.3 AND telnet-server is earlier than 1:0.17-31.EL4.3

Definition Id: oval:org.mitre.oval:def:1139

Oval ID:	oval:org.mitre.oval:def:1139
Title:	Telnet Client Information Disclosure Vulnerability
Description:	Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-0488	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	telnet
Definition Synopsis:
Software section Red Hat Enterprise 3 is installed AND telnet RPM earlier than 1:0.17-20.EL3.3 AND Configuration section /usr/bin/telnet is executable by any user

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Telnet Client cpe:2.3:a:microsoft:telnet_client:5.1.2600.2180:::::::*	1
Application	Mit Kerberos 5 cpe:2.3:a:mit:kerberos_5:1.3.4:::::::*	1
Os	Sun Sunos cpe:2.3:o:sun:sunos:5.9:::::::*	1

OpenVAS Exploits

Date	Description
2009-11-17	Name : Mac OS X Version File : nvt/macosx_version.nasl
2009-06-03	Name : Solaris Update for telnet 110668-05 File : nvt/gb_solaris_110668_05.nasl
2009-06-03	Name : Solaris Update for telnet 110669-05 File : nvt/gb_solaris_110669_05.nasl
2009-06-03	Name : Solaris Update for telnet 119433-01 File : nvt/gb_solaris_119433_01.nasl
2009-06-03	Name : Solaris Update for telnet 119434-01 File : nvt/gb_solaris_119434_01.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
17303	Multiple Vendor Telnet Client NEW-ENVIRON Variable Information Disclosure

Nessus® Vulnerability Scanner

Date	Description
2006-08-01	Name : The remote operating system is missing a vendor-supplied patch. File : macosx_SecUpd2006-004.nasl - Type : ACT_GATHER_INFO
2006-07-05	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-567.nasl - Type : ACT_GATHER_INFO
2006-07-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-504.nasl - Type : ACT_GATHER_INFO
2006-07-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-562.nasl - Type : ACT_GATHER_INFO
2005-07-14	Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-119.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote Fedora Core host is missing a security update. File : fedora_2005-552.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote Fedora Core host is missing a security update. File : fedora_2005-553.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-562.nasl - Type : ACT_GATHER_INFO
2005-07-13	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-567.nasl - Type : ACT_GATHER_INFO
2005-06-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-504.nasl - Type : ACT_GATHER_INFO
2005-06-14	Name : It is possible to disclose user information. File : smb_nt_ms05-033.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
APPLE	http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html
BID	http://www.securityfocus.com/bid/13940 http://www.securityfocus.com/bid/19289
CERT	http://www.us-cert.gov/cas/techalerts/TA06-214A.html
CERT-VN	http://www.kb.cert.org/vuls/id/800829
IDEFENSE	http://idefense.com/application/poi/display?id=260&type=vulnerabilities
OVAL	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova... https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
REDHAT	http://www.redhat.com/support/errata/RHSA-2005-504.html http://www.redhat.com/support/errata/RHSA-2005-562.html
SECTRACK	http://securitytracker.com/id?1014203
SECUNIA	http://secunia.com/advisories/17135 http://secunia.com/advisories/21253
SUNALERT	http://sunsolve.sun.com/search/document.do?assetkey=1-26-101665-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101671-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57755-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57761-1
SUSE	http://www.novell.com/linux/security/advisories/2005_16_sr.html
VUPEN	http://www.vupen.com/english/advisories/2006/3101

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-05-04 12:02:48	Multiple Updates
2021-04-22 01:03:00	Multiple Updates
2020-05-23 00:16:22	Multiple Updates
2018-10-31 00:19:44	Multiple Updates
2017-10-11 09:23:28	Multiple Updates
2016-06-28 15:14:54	Multiple Updates
2016-04-26 13:18:12	Multiple Updates
2014-02-17 10:30:13	Multiple Updates
2013-05-11 11:21:41	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	2
CPE ID(s)	3
Sources(s)	19
osvdb(s)	1
Openvas Exploit(s)	5
Nessus® Exploit(s)	11

	Related
7.5	RHSA-2005:567
7.5	RHSA-2005:562
5	RHSA-2005:504
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 3 more Alert(s)

5 - CVE-2005-0488

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU