Xtell : Security Vulnerabilities, CVEs, CVSS score >= 3
Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument.
Max CVSS
5.0
EPSS Score
1.08%
Published
2002-06-25
Updated
2016-10-18
Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, (2) a long AUTH string, or (3) certain data in the xtell request.
Max CVSS
7.5
EPSS Score
39.32%
Published
2002-06-25
Updated
2016-10-18
2 vulnerabilities found