CVE-2003-0046

Опубликовано: 19 фев. 2003

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

AbsoluteTelnet SSH2 client does not clear logon credentials from memory, including plaintext passwords, which could allow attackers with access to memory to steal the SSH credentials.

Ссылки

http://marc.info/?l=bugtraq&m=104386492422014&w=2
http://www.celestialsoftware.net/telnet/beta_software.html
Vendor Advisory
http://www.idefense.com/advisory/01.28.03.txt
Patch
Vendor Advisory
http://www.osvdb.org/7686
http://www.securityfocus.com/bid/6725
http://www.securitytracker.com/id?1006013
http://marc.info/?l=bugtraq&m=104386492422014&w=2
http://www.celestialsoftware.net/telnet/beta_software.html
Vendor Advisory
http://www.idefense.com/advisory/01.28.03.txt
Patch
Vendor Advisory
http://www.osvdb.org/7686
http://www.securityfocus.com/bid/6725
http://www.securitytracker.com/id?1006013

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:celestial_software:absolutetelnet:2.11:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.0009

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-pq65-86r9-wp9r

github

почти 4 года назад