Vulnerability Details CVE-2004-0640
Format string vulnerability in the SSL_set_verify function in telnetd.c for SSLtelnet daemon (SSLtelnetd) 0.13 allows remote attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 87.0%
CVSS Severity
CVSS v2 Score 10.0
References
- http://www.debian.org/security/2004/dsa-529
- http://www.idefense.com/application/poi/display?id=114&type=vulnerabilities
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16653
- http://www.debian.org/security/2004/dsa-529
- http://www.idefense.com/application/poi/display?id=114&type=vulnerabilities
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16653
Products affected by CVE-2004-0640
-
cpe:2.3:a:netkit:linux_netkit:0.17
-
cpe:2.3:a:netkit:linux_netkit:0.17.17
-
cpe:2.3:a:ssltelnetd:secure_telnet:0.13.1