Vulnerabilities > CVE-2005-0868 - Remote Security vulnerability in Client Access

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

NVD

Published: 2005-05-02

Updated: 2016-10-18

Summary

AS/400 Telnet 5250 terminal emulation clients, as implemented by (1) IBM client access, (2) Bosanova, (3) PowerTerm, (4) Mochasoft, and possibly other emulations, allows malicious AS/400 servers to execute arbitrary commands via a STRPCO (Start PC Organizer) command followed by STRPCCMD (Start PC command), as demonstrated by creating a backdoor account using REXEC.

Vulnerable Configurations

Part	Description	Count
Application	Bosanova Bosanova Launcher400 *	1
Application	Ibm IBM Client Access *	1
Application	Mochasoft Mochasoft Tn5250 *	1
Application	Powerterm Powerterm Interconnect *	1

References

http://marc.info/?l=bugtraq&m=111160242803070&w=2
http://www.venera.com/downloads/Attack_5250_terminal_emulations_from_iSeries_server.pdf