vulnerability
FreeBSD: VID-e00304d2-bbed-11e6-b1cf-14dae9d210b8 (CVE-2016-1888): FreeBSD -- Possible login(1) argument injection in telnetd(8)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Dec 6, 2016 | Dec 9, 2016 | Dec 10, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Dec 6, 2016
Added
Dec 9, 2016
Modified
Dec 10, 2025
Description
Problem Description: An unexpected sequence of memory allocation failures combined with insufficient error checking could result in the construction and execution of an argument sequence that was not intended. Impact: An attacker who controls the sequence of memory allocation failures and success may cause login(1) to run without authentication and may be able to cause misbehavior of login(1) replacements. No practical way of controlling these memory allocation failures is known at this time.
Solutions
freebsd-upgrade-base-11_0-release-p4freebsd-upgrade-base-10_3-release-p13freebsd-upgrade-base-10_2-release-p26freebsd-upgrade-base-10_1-release-p43freebsd-upgrade-base-9_3-release-p51
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.