CVE-2005-0468

EPSS 58.5%

krb4 - buffer overflows

Published: 5/2/2005Modified: 4/28/2026

Also known as:DEBIAN-CVE-2005-0468

Description

Heap-based buffer overflow in the env_opt_add function in telnet.c for various BSD-based Telnet clients allows remote attackers to execute arbitrary code via responses that contain a large number of characters that require escaping, which consumers more memory than allocated.

Affected packages (3)

Debian/krb4from 0, < 1.1-8-2.4
Debian/krb5from 0, < 1.3.6-2
Debian/krb5from 0, < 1.2.4-5woody8

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-0468