[21860] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: multiple vendor telnet daemon vulnerability

daemon@ATHENA.MIT.EDU (Chad Loder)
Wed Jul 25 15:46:22 2001

Message-Id: <5.1.0.14.2.20010724215122.00a89ff8@pop-server.socal.rr.com>
Date: Tue, 24 Jul 2001 21:55:44 -0700
To: Kris Kennaway <kris@obsecurity.org>
From: Chad Loder <cloder@acm.org>
Cc: bugtraq@securityfocus.com
In-Reply-To: <20010724161135.A37310@xor.obsecurity.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed

AFAIK, telnet is a symmetric protocol, i.e. there
is no real difference between servers and clients
from telnet's point of view.

I wonder if telnet clients are vulnerable to this
or similar option-negotiation buffer overflows.

===================
Chad Loder
Principal Engineer
Rapid 7, Inc.
===================


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[21860] in bugtraq

Re: multiple vendor telnet daemon vulnerability

daemon@ATHENA.MIT.EDU (Chad Loder)Wed Jul 25 15:46:22 2001

daemon@ATHENA.MIT.EDU (Chad Loder)
Wed Jul 25 15:46:22 2001