CVE-2020-37166

Medium CVSS: 6.9

AbsoluteTelnet 11.12 contains a denial of service vulnerability in the SSH2 username input field that allows local attackers to crash the application. Attackers can overwrite the username field with a 1000-byte buffer, causing the application to become unresponsive and terminate.

Vendor

Celestialsoftware

Product

Absolutetelnet

CWE

CWE-120

Yayın Tarihi

2026-02-07 00:15:57

Güncelleme

2026-02-19 18:52:13

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-120 Absolutetelnet MEDIUM Celestialsoftware 2026

Referanslar

https://www.celestialsoftware.net/ https://www.exploit-db.com/exploits/48010 https://www.vulncheck.com/advisories/absolutetelnet-sshusername-denial-of-service

Benzer Kayıtlar

Medium

CVE-2020-37164

AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to crash the application by…

Medium

CVE-2020-37165

AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to crash the application by…

Medium

CVE-2021-47764

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by…

Medium

CVE-2021-47765

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by…