Buffer Overflow Vulnerability in HelpSystems tcpcrypt on Linux for BoKS Encrypted Telnet

Buffer Overflow Vulnerability in HelpSystems tcpcrypt on Linux for BoKS Encrypted Telnet

CVE-2018-20764 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.