vendor:
SunOS
by:
Kingcope
7.5
CVSS
HIGH
Remote Code Execution
CWE
Product Name: SunOS
Affected Version From: SunOS 5.10
Affected Version To: SunOS 5.11
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: SunOS 5.10, SunOS 5.11
2007
SunOS 5.10/5.11 in.telnetd Remote Exploit
This exploit targets the in.telnetd service in SunOS 5.10 and 5.11. It allows an attacker to execute arbitrary code remotely by sending a specially crafted payload. The exploit was developed by Kingcope in 2007.
Mitigation:
To mitigate this vulnerability, it is recommended to disable the in.telnetd service or use a more secure alternative such as SSH.