CVE-2018-20764

A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation.

Published : 2019-02-08 17:29 Updated : 2019-02-11 13:38

7.5
CVSS Score More info
Score 7.5 / 10
7.5

CPE

There is no CPE for this CVE.

CWE

ID Name Description Links
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. CVE

History of changes

Date Event
2019-02-11 13:38
2019-02-08 17:29

New CVE