MS02-004: Microsoft Telnet Server Protocol Option Handling Remote Overflow (307298) (intrusive check)

This script is Copyright (C) 2003-2017 Tenable Network Security, Inc.


Synopsis :

The remote telnet server is affected by a remote buffer overflow
vulnerability.

Description :

The remote telnet server appears to be Microsoft's telnet server. It
is possible to crash the remote service when it receives too many
options, probably because of a buffer overflow.

An attacker may use this flaw to deny service to legitimate users, or
execute arbitrary code on the remote host subject to the privileges of
the telnet service.

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms02-004

Solution :

Apply update referenced in MS02-004.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 11314 ()

Bugtraq ID: 4061

CVE ID: CVE-2002-0020

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now