CVE-2003-1090 - Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code

CVE-2003-1090

Summary

Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title.

References

Vulnerable Configurations

cpe:2.3:a:celestial_software:absolutetelnet:2.0:*:*:*:*:*:*:*
cpe:2.3:a:celestial_software:absolutetelnet:2.0:*:*:*:*:*:*:*
cpe:2.3:a:celestial_software:absolutetelnet:2.11:*:*:*:*:*:*:*
cpe:2.3:a:celestial_software:absolutetelnet:2.11:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	6785
bugtraq	20030206 AbsoluteTelnet 2.00 buffer overflow.
cert-vn	VU#666073
osvdb	16024
xf	absolutetelnet-title-bar-bo(11265)

Last major update

11-07-2017 - 01:29

Published

06-02-2003 - 05:00

Last modified

11-07-2017 - 01:29