Vulnerabilities > CVE-2000-0892 - Information Disclosure vulnerability in U Win

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

high complexity

u-win

caldera

NVD

Published: 2001-07-21

Updated: 2017-10-10

Summary

Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.

Vulnerable Configurations

Part	Description	Count
Application	U_Win U WIN U WIN *	1
OS	Caldera Caldera Openlinux *	1

References

http://www.kb.cert.org/vuls/id/22404
https://exchange.xforce.ibmcloud.com/vulnerabilities/6644