System.V.Derived.Login.Buffer.Overflow
Description
This indicates a possible attempt to exploit of a buffer overflow vulnerability in the login program on System V based Operating systems.
The vulnerability may allow remote attackers to execute arbitrary commands by sending a large number of arguments through services such as telnet.
Affected Products
System V based Operating Systems dated 2001 and before.
Impact
System compromise: remote code execution.
Recommended Actions
Disable Telnet, rLogin and other programs using login for authentication. If you cannot disable Telnet and other services, you can limit your exposure to this vulnerabilities by using a firewall to restrict access to ports 23 and 513. This does not protect you against attackers from the local network.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |