CVE-2005-0488

CVE Database · CVE-2005-0488

CVE-2005-0488

· N/AModified

CVSS v3.1

N/A

EPSS

16.81%

Published

Jun 14, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Affected Products (3)

microsoft · telnet_clientvulnerable

mit · kerberos_5vulnerable

sun · sunosvulnerable

References (20)

http://idefense.com/application/poi/display?id=260&type=vulnerabilities

Vendor Advisory

http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html

http://secunia.com/advisories/17135

http://secunia.com/advisories/21253

http://securitytracker.com/id?1014203

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101665-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101671-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57755-1

PatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57761-1

KEV Catalog EPSS Scores Vendors All CVEs