Filtered by vendor Xtell
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-0334 | 1 Xtell | 1 Xtell | 2024-11-20 | 2.1 LOW | N/A |
xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file. | |||||
CVE-2002-0333 | 1 Xtell | 1 Xtell | 2024-11-20 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument. | |||||
CVE-2002-0332 | 1 Xtell | 1 Xtell | 2024-11-20 | 7.5 HIGH | N/A |
Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, (2) a long AUTH string, or (3) certain data in the xtell request. |