New Search

Server 2003 Telnet Environment Disclosure Vulnerability

oval:org.mitre.oval:def:605

The Telnet client for Microsoft Windows XP Windows Server 2003 and Windows Services for UNIX allows remote attackers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2005-1205
Product(s):
  • Services for UNIX