Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Unraid 6.5.0 - OpenVAS reports "TESO in.telnetd buffer overflow"

Featured Replies

Hi,

 

I'm sure this may be known, but a search didn't pop anything, so reporting.

I installed an OpenVAS VM within Unraid to run on my network "out of curiosity".  One of the vulnerabilities that it discovered was against Unraid (v6.5.0).  Below is the context/report:

 

Quote
Summary

The Telnet server does not return an expected number of replies when it receives a long sequence of 'Are You There' commands. This probably means it overflows one of its internal buffers and crashes. It is likely an attacker could abuse this bug to gain control over the remote host's superuser.

For more information, see: http://www.team-teso.net/advisories/teso-advisory-011.tar.gz

Vulnerability Detection Result

Vulnerability was detected according to the Vulnerability Detection Method.

Solution

Comment out the 'telnet' line in /etc/inetd.conf.

Vulnerability Detection Method

Details: TESO in.telnetd buffer overflow

Version used: $Revision: 6056 $

References

 

CVE: CVE-2001-0554
BID: 3064
Other: IAVA:2001-t-0008

 

 

Edit:  Please excuse as I didn’t open this in the Security forum.  Please don’t hesitate to relocate.

Edited by Edrikk

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.