Early Access — Mondoo Vulnerability Intelligence is currently in preview.
AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating username and error report fields. Attackers can trigger the crash by inserting 1000 characters into the username or email address fields, causing the application to become unresponsive.
Exploitability
AV:LAC:LAT:NPR:NUI:AVulnerable System
VC:NVI:NVA:HSubsequent System
SC:NSI:NSA:N6.7/CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:NMemory Safety