CVE-2003-1090 : Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to ex

Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title.

Published 2003-02-06 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2003-1090

Celestial Software » Absolutetelnet » Version: 2.11
cpe:2.3:a:celestial_software:absolutetelnet:2.11:*:*:*:*:*:*:*
Matching versions
Celestial Software » Absolutetelnet » Version: 2.0
cpe:2.3:a:celestial_software:absolutetelnet:2.0:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

23.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

http://marc.info/?l=bugtraq&m=104454984001076&w=2

'AbsoluteTelnet 2.00 buffer overflow.' - MARC
http://www.securityfocus.com/bid/6785

Exploit;Patch;Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/11265
http://www.kb.cert.org/vuls/id/666073

VU#666073 - AbsoluteTelnet vulnerable to buffer overflow via overly long window title
Patch;Third Party Advisory;US Government Resource
http://www.osvdb.org/16024

Jump to