CVE-2001-0554: Buffer Overflow
First published: Tue Aug 14 2001(Updated: )
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netkit | =0.10 | |
| MIT Kerberos 5 | =1.0 | |
| Netkit | =0.12 | |
| SGI IRIX | =6.5 | |
| Netkit | =0.11 | |
| MIT Kerberos 5 | =1.1 | |
| MIT Kerberos 5 | =1.2 | |
| MIT Kerberos 5 | =1.2.1 | |
| MIT Kerberos 5 | =1.2.2 | |
| MIT Kerberos 5 | =1.1.1 | |
| IBM AIX | =4.3.2 | |
| IBM AIX | =4.3 | |
| Sun SunOS | =5.3 | |
| FreeBSD FreeBSD | =3.1 | |
| OpenBSD | =2.8 | |
| FreeBSD FreeBSD | =3.0-releng | |
| FreeBSD FreeBSD | =2.2.5 | |
| NetBSD NetBSD | =1.3 | |
| NetBSD NetBSD | =1.5 | |
| FreeBSD FreeBSD | =2.2.2 | |
| NetBSD NetBSD | =1.2.1 | |
| NetBSD NetBSD | =1.3.1 | |
| FreeBSD FreeBSD | =2.1.7 | |
| FreeBSD FreeBSD | =3.5-stable | |
| FreeBSD FreeBSD | =2.2.3 | |
| FreeBSD FreeBSD | =2.0.5 | |
| OpenBSD | =2.1 | |
| Sun SunOS | =5.7 | |
| NetBSD NetBSD | =1.4.2 | |
| FreeBSD FreeBSD | =3.5.1 | |
| Sun SunOS | =5.5 | |
| OpenBSD | =2.2 | |
| Sun SunOS | =5.8 | |
| NetBSD NetBSD | =1.3.3 | |
| NetBSD NetBSD | =1.0 | |
| OpenBSD | =2.0 | |
| OpenBSD | =2.7 | |
| FreeBSD FreeBSD | =4.1 | |
| FreeBSD FreeBSD | =2.2.8 | |
| FreeBSD FreeBSD | =3.5.1-stable | |
| NetBSD NetBSD | =1.5.1 | |
| FreeBSD FreeBSD | =2.1.6.1 | |
| FreeBSD FreeBSD | =2.2 | |
| FreeBSD FreeBSD | =3.0 | |
| OpenBSD | =2.4 | |
| IBM AIX | =4.3.3 | |
| FreeBSD FreeBSD | =3.2 | |
| FreeBSD FreeBSD | =2.2-current | |
| NetBSD NetBSD | =1.1 | |
| FreeBSD FreeBSD | =4.2 | |
| NetBSD NetBSD | =1.4.3 | |
| FreeBSD FreeBSD | =2.2.4 | |
| FreeBSD FreeBSD | =2.1.0 | |
| FreeBSD FreeBSD | =2.2.6 | |
| Sun SunOS | =5.4 | |
| FreeBSD FreeBSD | =2.1.6 | |
| FreeBSD FreeBSD | =2.1.7.1 | |
| FreeBSD FreeBSD | =4.0-releng | |
| FreeBSD FreeBSD | =3.3 | |
| Sun SunOS | =5.5.1 | |
| FreeBSD FreeBSD | =4.0 | |
| FreeBSD FreeBSD | =4.1.1 | |
| FreeBSD FreeBSD | =4.3 | |
| IBM AIX | =4.3.1 | |
| FreeBSD FreeBSD | =3.4 | |
| FreeBSD FreeBSD | =2.0.1 | |
| FreeBSD FreeBSD | =3.5 | |
| NetBSD NetBSD | =1.4 | |
| NetBSD NetBSD | =1.3.2 | |
| OpenBSD | =2.6 | |
| Sun SunOS | =5.0 | |
| NetBSD NetBSD | =1.4.1 | |
| FreeBSD FreeBSD | =2.1.5 | |
| OpenBSD | =2.5 | |
| FreeBSD FreeBSD | =3.5.1-release | |
| IBM AIX | =5.1 | |
| OpenBSD | =2.3 | |
| FreeBSD FreeBSD | =4.0-alpha | |
| FreeBSD FreeBSD | =2.2.1 | |
| NetBSD NetBSD | =1.2 | |
| Oracle Solaris SPARC | =2.6 | |
| FreeBSD FreeBSD | =2.2.7 | |
| FreeBSD FreeBSD | =2.1-stable | |
| FreeBSD FreeBSD | =2.0 | |
| Sun SunOS | =5.1 | |
| Sun SunOS | =5.2 | |
| Debian GNU/Linux | =2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/archive/1/197804
- http://www.cert.org/advisories/CA-2001-21.html
- http://www.securityfocus.com/bid/3064
- http://online.securityfocus.com/archive/1/199496
- http://online.securityfocus.com/archive/1/203000
- http://online.securityfocus.com/archive/1/199541
- http://www.ciac.org/ciac/bulletins/l-131.shtml
- http://www.calderasystems.com/support/security/advisories/CSSA-2001-030.0.txt
- http://www.cisco.com/warp/public/707/catos-telrcv-vuln-pub.shtml
- http://ftp.support.compaq.com/patches/.new/html/SSRT0745U.shtml
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000413
- http://www.debian.org/security/2001/dsa-070
- http://www.debian.org/security/2001/dsa-075
- http://archives.neohapsis.com/archives/hp/2001-q4/0014.html
- http://online.securityfocus.com/advisories/3476
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-068.php3
- http://www.redhat.com/support/errata/RHSA-2001-099.html
- http://www.redhat.com/support/errata/RHSA-2001-100.html
- http://www.novell.com/linux/security/advisories/2001_029_nkitb_txt.html
- http://www.osvdb.org/809
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6875
Frequently Asked Questions
What is the severity of CVE-2001-0554?
CVE-2001-0554 has a severity rating of high due to the potential for remote code execution.
How do I fix CVE-2001-0554?
To fix CVE-2001-0554, update the affected software to a version that includes the security patches addressing this vulnerability.
What systems are impacted by CVE-2001-0554?
CVE-2001-0554 affects BSD-based telnetd implementations on various operating systems, including Netkit, MIT Kerberos, and several versions of FreeBSD.
Can CVE-2001-0554 be exploited remotely?
Yes, CVE-2001-0554 can be exploited remotely, allowing attackers to execute arbitrary commands over the network.
What is the cause of CVE-2001-0554?
CVE-2001-0554 is caused by a buffer overflow in the telrcv function of the telnet daemon, which mishandles specific options.
- agent/type
- agent/first-publish-date
- agent/references
- agent/author
- agent/remedy
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/netkit
- canonical/netkit
- version/netkit/0.10
- vendor/mit
- canonical/mit kerberos 5
- version/mit kerberos 5/1.0
- version/netkit/0.12
- vendor/sgi
- canonical/sgi irix
- version/sgi irix/6.5
- version/netkit/0.11
- version/mit kerberos 5/1.1
- version/mit kerberos 5/1.2
- version/mit kerberos 5/1.2.1
- version/mit kerberos 5/1.2.2
- version/mit kerberos 5/1.1.1
- vendor/ibm
- canonical/ibm aix
- version/ibm aix/4.3.2
- version/ibm aix/4.3
- vendor/sun
- canonical/sun sunos
- version/sun sunos/5.3
- vendor/freebsd
- canonical/freebsd freebsd
- version/freebsd freebsd/3.1
- vendor/openbsd
- canonical/openbsd
- version/openbsd/2.8
- version/freebsd freebsd/3.0-releng
- version/freebsd freebsd/2.2.5
- vendor/netbsd
- canonical/netbsd netbsd
- version/netbsd netbsd/1.3
- version/netbsd netbsd/1.5
- version/freebsd freebsd/2.2.2
- version/netbsd netbsd/1.2.1
- version/netbsd netbsd/1.3.1
- version/freebsd freebsd/2.1.7
- version/freebsd freebsd/3.5-stable
- version/freebsd freebsd/2.2.3
- version/freebsd freebsd/2.0.5
- version/openbsd/2.1
- version/sun sunos/5.7
- version/netbsd netbsd/1.4.2
- version/freebsd freebsd/3.5.1
- version/sun sunos/5.5
- version/openbsd/2.2
- version/sun sunos/5.8
- version/netbsd netbsd/1.3.3
- version/netbsd netbsd/1.0
- version/openbsd/2.0
- version/openbsd/2.7
- version/freebsd freebsd/4.1
- version/freebsd freebsd/2.2.8
- version/freebsd freebsd/3.5.1-stable
- version/netbsd netbsd/1.5.1
- version/freebsd freebsd/2.1.6.1
- version/freebsd freebsd/2.2
- version/freebsd freebsd/3.0
- version/openbsd/2.4
- version/ibm aix/4.3.3
- version/freebsd freebsd/3.2
- version/freebsd freebsd/2.2-current
- version/netbsd netbsd/1.1
- version/freebsd freebsd/4.2
- version/netbsd netbsd/1.4.3
- version/freebsd freebsd/2.2.4
- version/freebsd freebsd/2.1.0
- version/freebsd freebsd/2.2.6
- version/sun sunos/5.4
- version/freebsd freebsd/2.1.6
- version/freebsd freebsd/2.1.7.1
- version/freebsd freebsd/4.0-releng
- version/freebsd freebsd/3.3
- version/sun sunos/5.5.1
- version/freebsd freebsd/4.0
- version/freebsd freebsd/4.1.1
- version/freebsd freebsd/4.3
- version/ibm aix/4.3.1
- version/freebsd freebsd/3.4
- version/freebsd freebsd/2.0.1
- version/freebsd freebsd/3.5
- version/netbsd netbsd/1.4
- version/netbsd netbsd/1.3.2
- version/openbsd/2.6
- version/sun sunos/5.0
- version/netbsd netbsd/1.4.1
- version/freebsd freebsd/2.1.5
- version/openbsd/2.5
- version/freebsd freebsd/3.5.1-release
- version/ibm aix/5.1
- version/openbsd/2.3
- version/freebsd freebsd/4.0-alpha
- version/freebsd freebsd/2.2.1
- version/netbsd netbsd/1.2
- canonical/oracle solaris sparc
- version/oracle solaris sparc/2.6
- version/freebsd freebsd/2.2.7
- version/freebsd freebsd/2.1-stable
- version/freebsd freebsd/2.0
- version/sun sunos/5.1
- version/sun sunos/5.2
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/2.2