CVE-2007-0882

CVE Database · CVE-2007-0882

CVE-2007-0882

· N/AModified

CVSS v3.1

N/A

EPSS

97.74%

Published

Feb 12, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (4)

All weaponized →

Exploit-DBSolaris 10/11 Telnet - Remote Authentication Bypass (Metasploit)Exploit-DBSun Solaris Telnet - Remote Authentication Bypass (Metasploit)Exploit-DBSunOS 5.10/5.11 in.TelnetD - Remote Authentication Bypass TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the bin account.

Weaknesses (CWE)

CWE-88

Affected Products (4)

oracle · solarisvulnerable

sun · sunosvulnerable

References (20)

http://erratasec.blogspot.com/2007/02/trivial-remote-solaris-0day-disable.html

ExploitThird Party Advisory

http://isc.sans.org/diary.html?storyid=2220

ExploitThird Party Advisory

http://osvdb.org/31881

Broken Link

http://seclists.org/fulldisclosure/2007/Feb/0217.html

Mailing ListThird Party Advisory

http://secunia.com/advisories/24120

Broken LinkVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102802-1

KEV Catalog EPSS Scores Vendors All CVEs