CVE-2000-0892

Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.

Score2.6
Access VectorNETWORK
Access ComplexityHIGH
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactNONE
Availability ImpactNONE
Published2001-07-21 12:00:00.000-04
Last Modified2017-10-09 09:29:21.000-04

Vulnerable Software List

VendorProductVersions
Caldera Openlinux
U Win U Win

References

SourceLink
CERT-VNVU#22404
XFtelnet-obtain-env-variable(6644)