CVE-1999-1098

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Mar 3, 1995
Updated: Nov 20, 2024

Summary

CVE-1999-1098 is a vulnerability affecting the BSD Telnet client. This issue permits remote attackers to decrypt session data, even if encryption is enabled, by exploiting weaknesses in the client's Kerberos 4 authentication protocol. An attacker can intercept and read sensitive information, including usernames and passwords, during a Telnet session. This vulnerability poses a significant risk to network security and could lead to unauthorized access to systems using the affected Telnet client. It is strongly recommended that users upgrade to a secure and patched version of their Telnet client to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • BSD BSD

Affected Vendors

  • Blue State Digital