The Telnet client for Microsoft Windows XP, Windows Server 2003, and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_2003_server | Microsoft | enterprise (including) | enterprise (including) |
| Windows_2003_server | Microsoft | r2 (including) | r2 (including) |
| Windows_2003_server | Microsoft | standard (including) | standard (including) |
| Windows_2003_server | Microsoft | web (including) | web (including) |
References
- http://idefense.com/application/poi/display?id=260\u0026type=vulnerabilities
- http://secunia.com/advisories/15690/
- http://securitytracker.com/id?1014203
- http://www.kb.cert.org/vuls/id/800829
- http://www.securityfocus.com/bid/13940
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-033
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1132
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A605
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A784
- http://idefense.com/application/poi/display?id=260\u0026type=vulnerabilities
- http://secunia.com/advisories/15690/
- http://securitytracker.com/id?1014203
- http://www.kb.cert.org/vuls/id/800829
- http://www.securityfocus.com/bid/13940
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-033
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1132
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A605
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A784