Vulnerabilities (CVE)

Filtered by vendor Xtell Subscribe
Filtered by product Xtell
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-0334 1 Xtell 1 Xtell 2024-11-20 2.1 LOW N/A
xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file.
CVE-2002-0333 1 Xtell 1 Xtell 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument.
CVE-2002-0332 1 Xtell 1 Xtell 2024-11-20 7.5 HIGH N/A
Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, (2) a long AUTH string, or (3) certain data in the xtell request.